Schneider-Electric Triconex Tricon Mp 3008 Firmware vulnerabilities
2 known vulnerabilities affecting schneider-electric/triconex_tricon_mp_3008_firmware.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
2
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2018-7522P2MEDIUMCVSS 6.7Exploited≥ 10.0, ≤ 10.0-10.42018-05-04
CVE-2018-7522 [MEDIUM] CWE-119 CVE-2018-7522: In Schneider Electric Triconex Tricon MP model 3008 firmware versions 10.0-10.4, when a system call
In Schneider Electric Triconex Tricon MP model 3008 firmware versions 10.0-10.4, when a system call is made, registers are stored to a fixed memory location. Modifying the data in this location could allow attackers to gain supervisor-level access and control system states.
nvd
CVE-2018-8872P2HIGHCVSS 8.1Exploited≥ 10.0, ≤ 10.42018-05-04
CVE-2018-8872 [HIGH] CWE-119 CVE-2018-8872: In Schneider Electric Triconex Tricon MP model 3008 firmware versions 10.0-10.4, system calls read d
In Schneider Electric Triconex Tricon MP model 3008 firmware versions 10.0-10.4, system calls read directly from memory addresses within the control program area without any verification. Manipulating this data could allow attacker data to be copied anywhere within memory.
nvd