CVE List

CVE-2020-7477

Critical 7.5

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Quantum Ethernet Network module 140NOE771x1 (Versions 7.0 and prior), Quantum processors with integrated Ethernet – 140CPU65xxxxx (all Versions), and Premium processors with integrated Ethernet (all Versions), which could cause a Denial of Service when sending a specially crafted command over Modbus.

Published March 24, 2020.

Affected software

Schneider-electric 140cpu65150 Firmware

Schneider-electric 140cpu65160 Firmware

Schneider-electric 140cpu65160s Firmware

Schneider-electric 140cpu65260 Firmware

Schneider-electric 140cpu65860 Firmware

Schneider-electric Tsxh5724m Firmware

Schneider-electric Tsxh5744m Firmware

Schneider-electric Tsxp57104m Firmware

Schneider-electric Tsxp57154m Firmware

Schneider-electric Tsxp571634m Firmware

Schneider-electric Tsxp57204m Firmware

Schneider-electric Tsxp57254m Firmware

Schneider-electric Tsxp572634m Firmware

Schneider-electric Tsxp57304m Firmware

Schneider-electric Tsxp573634m Firmware

Schneider-electric Tsxp57454m Firmware

Schneider-electric Tsxp574634m Firmware

Schneider-electric Tsxp57554m Firmware

Schneider-electric Tsxp575634m Firmware

Schneider-electric Tsxp576634m Firmware

Schneider-electric 140cpu67160 Firmware

Schneider-electric 140cpu67261 Firmware

Schneider-electric 140cpu67060 Firmware

Schneider-electric 140cpu67861 Firmware

Schneider-electric 140cpu67160s Firmware

Schneider-electric 140cpu67260 Firmware

Schneider-electric 140noe77101 Firmware

Schneider-electric 140noe77111 Firmware

Reference links

Sign Up for Alerts