CVE-2018-7794
First published: Mon Jan 06 2020(Updated: )
A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Modicon M580, Modicon M340, Modicon Quantum, Modicon Premium (see security notification for specific versions) which could cause a Denial of Service when reading data with invalid index using Modbus TCP.
Credit: cybersecurity@se.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Schneider Electric Modicon M580 Firmware | <2.80 | |
| Schneider Electric Modicon M580 | ||
| Schneider Electric Modicon M340 Firmware | <3.01 | |
| Schneider Electric Modicon M340 | ||
| Schneider Electric TSXH5744M Firmware | <3.20 | |
| Schneider Electric TSXH5744M Firmware | ||
| Schneider Electric TSXH5724M | <3.20 | |
| schneider-electric tsxh5724m firmware | ||
| schneider-electric tsxp576634mc firmware | <3.20 | |
| schneider-electric tsxp576634m firmware | ||
| Schneider Electric TSX P57554M Firmware | <3.20 | |
| Schneider Electric TSXP57554M | ||
| schneider-electric tsxp575634m firmware | <3.20 | |
| Schneider Electric TSXP575634M | ||
| Schneider Electric TSXP57454M Firmware | <3.20 | |
| Schneider Electric TSXP57454M | ||
| schneider-electric tsxp574634m firmware | <3.20 | |
| Schneider Electric TSXP574634M | ||
| schneider-electric tsxp57354m firmware | <3.20 | |
| Schneider Electric TSXP57354MC | ||
| Schneider Electric TSXP573634M Firmware | <3.20 | |
| Schneider Electric TSXP573634M | ||
| Schneider Electric TSXP57304M Firmware | <3.20 | |
| Schneider Electric TSXP57304M Firmware | ||
| schneider-electric tsxp57254m firmware | <3.20 | |
| schneider-electric tsxp57254m firmware | ||
| Schneider Electric TSXP572634M Firmware | <3.20 | |
| Schneider Electric TSXP572634M | ||
| Schneider Electric TSXP57204M Firmware | <3.20 | |
| Schneider Electric TSXP57204M | ||
| schneider-electric tsxp571634mc firmware | <3.20 | |
| Schneider Electric TSXP571634M Firmware | ||
| Schneider Electric TSXP57154M Firmware | <3.20 | |
| Schneider Electric TSXP57154M | ||
| Schneider Electric TSXP57104M | <3.20 | |
| Schneider Electric TSXp57104MC | ||
| Schneider Electric 140CPU65150 Firmware | <3.52 | |
| Schneider Electric 140CPU65150 Firmware | ||
| Schneider Electric 140CPU65160 Firmware | <3.52 | |
| Schneider Electric 140CPU65160 | ||
| Schneider Electric 140CPU65260 Firmware | <3.52 | |
| Schneider Electric 140CPU65260C | ||
| Schneider Electric 140CPU67261 Firmware | <3.52 | |
| Schneider Electric 140CPU67261 Firmware | ||
| Schneider Electric 140CPU67060 Firmware | <3.52 | |
| Schneider Electric 140CPU67060 Firmware | ||
| Schneider Electric 140CPU67160 Firmware | <3.52 | |
| Schneider Electric 140CPU67160 Firmware | ||
| Schneider Electric 140CPU67260 | <3.52 | |
| Schneider Electric 140CPU67260 | ||
| Schneider Electric 140CPU65860 | <3.52 | |
| Schneider Electric 140CPU65860 | ||
| Schneider Electric 140CPU67861 Firmware | <3.52 | |
| schneider-electric 140cpu67861 | ||
| Schneider Electric 140CPU65160S Firmware | <3.52 | |
| Schneider Electric 140CPU65160S Firmware | ||
| Schneider Electric 140CPU67160S Firmware | <3.52 | |
| Schneider Electric 140CPU67160S Firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2018-7794?
CVE-2018-7794 has a severity rating that could lead to a Denial of Service in affected Schneider Electric devices.
How do I fix CVE-2018-7794?
To mitigate CVE-2018-7794, update the firmware of the affected devices to the latest version provided by Schneider Electric.
Which devices are impacted by CVE-2018-7794?
CVE-2018-7794 affects various Schneider Electric devices, including Modicon M580, Modicon M340, and others as specified in their security notifications.
What causes the CVE-2018-7794 vulnerability?
CVE-2018-7794 is caused by improper checks for unusual or exceptional conditions when reading data with an invalid index using Modbus TCP.
Is there a workaround for CVE-2018-7794?
Currently, the recommended action for CVE-2018-7794 is to upgrade to the latest firmware, as no specific workarounds are available.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/references
- agent/last-modified-date
- agent/author
- agent/weakness
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/schneider-electric
- canonical/schneider electric modicon m580 firmware
- canonical/schneider electric modicon m580
- canonical/schneider electric modicon m340 firmware
- canonical/schneider electric modicon m340
- canonical/schneider electric tsxh5744m firmware
- canonical/schneider electric tsxh5724m
- canonical/schneider-electric tsxh5724m firmware
- canonical/schneider-electric tsxp576634mc firmware
- canonical/schneider-electric tsxp576634m firmware
- canonical/schneider electric tsx p57554m firmware
- canonical/schneider electric tsxp57554m
- canonical/schneider-electric tsxp575634m firmware
- canonical/schneider electric tsxp575634m
- canonical/schneider electric tsxp57454m firmware
- canonical/schneider electric tsxp57454m
- canonical/schneider-electric tsxp574634m firmware
- canonical/schneider electric tsxp574634m
- canonical/schneider-electric tsxp57354m firmware
- canonical/schneider electric tsxp57354mc
- canonical/schneider electric tsxp573634m firmware
- canonical/schneider electric tsxp573634m
- canonical/schneider electric tsxp57304m firmware
- canonical/schneider-electric tsxp57254m firmware
- canonical/schneider electric tsxp572634m firmware
- canonical/schneider electric tsxp572634m
- canonical/schneider electric tsxp57204m firmware
- canonical/schneider electric tsxp57204m
- canonical/schneider-electric tsxp571634mc firmware
- canonical/schneider electric tsxp571634m firmware
- canonical/schneider electric tsxp57154m firmware
- canonical/schneider electric tsxp57154m
- canonical/schneider electric tsxp57104m
- canonical/schneider electric tsxp57104mc
- canonical/schneider electric 140cpu65150 firmware
- canonical/schneider electric 140cpu65160 firmware
- canonical/schneider electric 140cpu65160
- canonical/schneider electric 140cpu65260 firmware
- canonical/schneider electric 140cpu65260c
- canonical/schneider electric 140cpu67261 firmware
- canonical/schneider electric 140cpu67060 firmware
- canonical/schneider electric 140cpu67160 firmware
- canonical/schneider electric 140cpu67260
- canonical/schneider electric 140cpu65860
- canonical/schneider electric 140cpu67861 firmware
- canonical/schneider-electric 140cpu67861
- canonical/schneider electric 140cpu65160s firmware
- canonical/schneider electric 140cpu67160s firmware