CVE-2019-6819
First published: Wed May 22 2019(Updated: )
A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists which could cause a possible Denial of Service when specific Modbus frames are sent to the controller in the products: Modicon M340 - firmware versions prior to V3.01, Modicon M580 - firmware versions prior to V2.80, All firmware versions of Modicon Quantum and Modicon Premium.
Credit: cybersecurity@se.com cybersecurity@se.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Schneider-electric Modicon M340 Firmware | <3.01 | |
| Schneider-electric Bmxp341000 | ||
| Schneider-electric Bmxp341000h | ||
| Schneider-electric Bmxp342000 | ||
| Schneider-electric Bmxp3420102 | ||
| Schneider-electric Bmxp3420102cl | ||
| Schneider-electric Bmxp342020 | ||
| Schneider-electric Bmxp342020h | ||
| Schneider-electric Bmxp3420302 | ||
| Schneider-electric Bmxp3420302cl | ||
| Schneider-electric Bmxp3420302h | ||
| Schneider-electric Modicon M580 Firmware | <2.80 | |
| Schneider-electric Bmeh582040 | ||
| Schneider-electric Bmeh582040c | ||
| Schneider-electric Bmeh584040 | ||
| Schneider-electric Bmeh584040c | ||
| Schneider-electric Bmeh586040 | ||
| Schneider-electric Bmeh586040c | ||
| Schneider-electric Modicon M580 Bmep581020 | ||
| Schneider-electric Modicon M580 Bmep581020h | ||
| Schneider-electric Modicon M580 Bmep582020 | ||
| Schneider-electric Modicon M580 Bmep582020h | ||
| Schneider-electric Modicon M580 Bmep582040 | ||
| Schneider-electric Modicon M580 Bmep582040h | ||
| Schneider-electric Modicon M580 Bmep582040s | ||
| Schneider-electric Modicon M580 Bmep583020 | ||
| Schneider-electric Modicon M580 Bmep583040 | ||
| Schneider-electric Modicon M580 Bmep584020 | ||
| Schneider-electric Modicon M580 Bmep584040 | ||
| Schneider-electric Modicon M580 Bmep584040s | ||
| Schneider-electric Modicon M580 Bmep585040 | ||
| Schneider-electric Modicon M580 Bmep585040c | ||
| Schneider-electric Modicon M580 Bmep586040 | ||
| Schneider-electric Modicon M580 Bmep586040c | ||
| Schneider-electric Modicon Quantum Firmware | ||
| Schneider-electric Modicon Quantum | ||
| Schneider-electric Modicon Premium Firmware | ||
| Schneider-electric Modicon Premium | ||
| All of | ||
| Schneider-electric Modicon M340 Firmware | <3.01 | |
| Any of | ||
| Schneider-electric Modicon M340 Bmxp341000 | ||
| Schneider-electric Modicon M340 Bmxp341000h | ||
| Schneider-electric Modicon M340 Bmxp342000 | ||
| Schneider-electric Modicon M340 Bmxp3420102 | ||
| Schneider-electric Modicon M340 Bmxp3420102cl | ||
| Schneider-electric Modicon M340 Bmxp342020 | ||
| Schneider-electric Modicon M340 Bmxp342020h | ||
| Schneider-electric Modicon M340 Bmxp3420302 | ||
| Schneider-electric Modicon M340 Bmxp3420302cl | ||
| Schneider-electric Modicon M340 Bmxp3420302h | ||
| All of | ||
| Schneider-electric Modicon M580 Firmware | <2.80 | |
| Any of | ||
| Schneider-electric Bmeh582040 | ||
| Schneider-electric Bmeh582040c | ||
| Schneider-electric Bmeh584040 | ||
| Schneider-electric Bmeh584040c | ||
| Schneider-electric Bmeh586040 | ||
| Schneider-electric Bmeh586040c | ||
| Schneider-electric Modicon M580 Bmep581020 | ||
| Schneider-electric Modicon M580 Bmep581020h | ||
| Schneider-electric Modicon M580 Bmep582020 | ||
| Schneider-electric Modicon M580 Bmep582020h | ||
| Schneider-electric Modicon M580 Bmep582040 | ||
| Schneider-electric Modicon M580 Bmep582040h | ||
| Schneider-electric Modicon M580 Bmep582040s | ||
| Schneider-electric Modicon M580 Bmep583020 | ||
| Schneider-electric Modicon M580 Bmep583040 | ||
| Schneider-electric Modicon M580 Bmep584020 | ||
| Schneider-electric Modicon M580 Bmep584040 | ||
| Schneider-electric Modicon M580 Bmep584040s | ||
| Schneider-electric Modicon M580 Bmep585040 | ||
| Schneider-electric Modicon M580 Bmep585040c | ||
| Schneider-electric Modicon M580 Bmep586040 | ||
| Schneider-electric Modicon M580 Bmep586040c | ||
| All of | ||
| Schneider-electric Modicon Quantum Firmware | ||
| Schneider-electric Modicon Quantum | ||
| All of | ||
| Schneider-electric Modicon Premium Firmware | ||
| Schneider-electric Modicon Premium |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID of this security issue?
The vulnerability ID of this security issue is CVE-2019-6819.
What is the severity rating of CVE-2019-6819?
CVE-2019-6819 has a severity rating of 7.5, which is considered high.
Which products are affected by CVE-2019-6819?
CVE-2019-6819 affects the following products: Modicon M340 firmware versions prior to V3.01, Modicon M580 firmware versions prior to V2.80.
How can CVE-2019-6819 be exploited?
CVE-2019-6819 can be exploited by sending specific Modbus frames to the affected controller.
Is there a fix available for CVE-2019-6819?
Yes, a fix is available for CVE-2019-6819. It is recommended to update the firmware to version V3.01 for Modicon M340 and V2.80 for Modicon M580.
- collector/nvd-index
- agent/references
- agent/type
- agent/first-publish-date
- agent/author
- agent/severity
- agent/last-modified-date
- agent/weakness
- agent/description
- agent/event
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- agent/tags
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- vendor/schneider-electric
- canonical/schneider-electric modicon m340 firmware
- canonical/schneider-electric bmxp341000
- canonical/schneider-electric bmxp341000h
- canonical/schneider-electric bmxp342000
- canonical/schneider-electric bmxp3420102
- canonical/schneider-electric bmxp3420102cl
- canonical/schneider-electric bmxp342020
- canonical/schneider-electric bmxp342020h
- canonical/schneider-electric bmxp3420302
- canonical/schneider-electric bmxp3420302cl
- canonical/schneider-electric bmxp3420302h
- canonical/schneider-electric modicon m580 firmware
- canonical/schneider-electric bmeh582040
- canonical/schneider-electric bmeh582040c
- canonical/schneider-electric bmeh584040
- canonical/schneider-electric bmeh584040c
- canonical/schneider-electric bmeh586040
- canonical/schneider-electric bmeh586040c
- canonical/schneider-electric modicon m580 bmep581020
- canonical/schneider-electric modicon m580 bmep581020h
- canonical/schneider-electric modicon m580 bmep582020
- canonical/schneider-electric modicon m580 bmep582020h
- canonical/schneider-electric modicon m580 bmep582040
- canonical/schneider-electric modicon m580 bmep582040h
- canonical/schneider-electric modicon m580 bmep582040s
- canonical/schneider-electric modicon m580 bmep583020
- canonical/schneider-electric modicon m580 bmep583040
- canonical/schneider-electric modicon m580 bmep584020
- canonical/schneider-electric modicon m580 bmep584040
- canonical/schneider-electric modicon m580 bmep584040s
- canonical/schneider-electric modicon m580 bmep585040
- canonical/schneider-electric modicon m580 bmep585040c
- canonical/schneider-electric modicon m580 bmep586040
- canonical/schneider-electric modicon m580 bmep586040c
- canonical/schneider-electric modicon quantum firmware
- canonical/schneider-electric modicon quantum
- canonical/schneider-electric modicon premium firmware
- canonical/schneider-electric modicon premium
- canonical/schneider-electric modicon m340 bmxp341000
- canonical/schneider-electric modicon m340 bmxp341000h
- canonical/schneider-electric modicon m340 bmxp342000
- canonical/schneider-electric modicon m340 bmxp3420102
- canonical/schneider-electric modicon m340 bmxp3420102cl
- canonical/schneider-electric modicon m340 bmxp342020
- canonical/schneider-electric modicon m340 bmxp342020h
- canonical/schneider-electric modicon m340 bmxp3420302
- canonical/schneider-electric modicon m340 bmxp3420302cl
- canonical/schneider-electric modicon m340 bmxp3420302h