First published: Wed May 22 2019(Updated: )
In Modicon Quantum all firmware versions, a CWE-94: Code Injection vulnerability could cause an unauthorized firmware modification with possible Denial of Service when using Modbus protocol.
Credit: cybersecurity@se.com
Affected Software | Affected Version | How to fix |
---|---|---|
Schneider-electric Modicon Quantum Firmware | ||
Schneider-electric Modicon Quantum |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for Modicon Quantum firmware is CVE-2019-6816.
The severity of CVE-2019-6816 is critical with a value of 9.1.
The CWE ID of CVE-2019-6816 is CWE-94.
The Code Injection vulnerability in Modicon Quantum firmware can be exploited to cause an unauthorized firmware modification with possible Denial of Service when using Modbus protocol.
More information about CVE-2019-6816 can be found at the following reference: https://www.schneider-electric.com/en/download/document/SEVD-2019-134-09/