CVE-2019-6829
First published: Tue Sep 17 2019(Updated: )
A CWE-248: Uncaught Exception vulnerability exists in Modicon M580 (firmware version prior to V2.90) and Modicon M340 (firmware version prior to V3.10), which could cause a possible denial of service when writing to specific memory addresses in the controller over Modbus.
Credit: cybersecurity@se.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Schneider-electric Modicon M580 Firmware | <2.90 | |
| Schneider-electric Modicon M580 | ||
| Schneider-electric Modicon M340 Firmware | <3.10 | |
| Schneider-electric Modicon M340 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID for this vulnerability?
The vulnerability ID for this vulnerability is CVE-2019-6829.
What is the severity of CVE-2019-6829?
The severity of CVE-2019-6829 is high with a CVSS score of 7.5.
Which software versions are affected by CVE-2019-6829?
Modicon M580 firmware versions prior to V2.90, and Modicon M340 firmware versions prior to V3.10 are affected by CVE-2019-6829.
What is the impact of CVE-2019-6829?
CVE-2019-6829 could cause a possible denial of service when writing to specific memory addresses in the controller over Modbus.
Is there a fix available for CVE-2019-6829?
Yes, a fix is available. Please refer to the reference link for more information.
- collector/nvd-index
- agent/severity
- agent/references
- agent/weakness
- agent/author
- agent/type
- agent/event
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/schneider-electric
- canonical/schneider-electric modicon m580 firmware
- canonical/schneider-electric modicon m580
- canonical/schneider-electric modicon m340 firmware
- canonical/schneider-electric modicon m340