CVE List

CVE-2019-6856

Critical 7.5

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Modicon M580, Modicon M340, Modicon Quantum, Modicon Premium (see security notification for specific versions) which could cause a Denial of Service when writing specific physical memory blocks using Modbus TCP.

Published January 7, 2020.

Affected software

Schneider-electric 140cpu65150 Firmware

Schneider-electric 140cpu65160 Firmware

Schneider-electric 140cpu65160s Firmware

Schneider-electric 140cpu65260 Firmware

Schneider-electric 140cpu65860 Firmware

Schneider-electric Tsxh5724m Firmware

Schneider-electric Tsxh5744m Firmware

Schneider-electric Tsxp57104m Firmware

Schneider-electric Tsxp57154m Firmware

Schneider-electric Tsxp571634m Firmware

Schneider-electric Tsxp57204m Firmware

Schneider-electric Tsxp57254m Firmware

Schneider-electric Tsxp572634m Firmware

Schneider-electric Tsxp57304m Firmware

Schneider-electric Tsxp57354m Firmware

Schneider-electric Tsxp573634m Firmware

Schneider-electric Tsxp57454m Firmware

Schneider-electric Tsxp574634m Firmware

Schneider-electric Tsxp57554m Firmware

Schneider-electric Tsxp575634m Firmware

Schneider-electric Tsxp576634m Firmware

Schneider-electric Modicon M340 Firmware

Schneider-electric Modicon M580 Firmware

Schneider-electric 140cpu67160 Firmware

Schneider-electric 140cpu67261 Firmware

Schneider-electric 140cpu67060 Firmware

Schneider-electric 140cpu67861 Firmware

Schneider-electric 140cpu67160s Firmware

Schneider-electric 140cpu67260 Firmware

Reference links

Sign Up for Alerts