A CWE-400: Uncontrolled Resource Consumption vulnerability exists that could cause a denial of service on ports 80 (HTTP) and 502 (Modbus), when sending a large number of TCP RST or FIN packets to any open TCP port of the PLC. Affected Product: Modicon M340 CPUs: BMXP34 (All Versions)
2022-02-04T23:15:13.160
2024-11-21T06:47:19.670
Modified
CVSSv3.1: 7.5 (HIGH)
AV:N/AC:L/Au:N/C:N/I:N/A:P
10.0
2.9
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Operating System | schneider-electric | modicon_m340_bmxp341000_firmware | - | Yes |
| Hardware | schneider-electric | modicon_m340_bmxp341000 | - | No |
| Operating System | schneider-electric | modicon_m340_bmxp342000_firmware | - | Yes |
| Hardware | schneider-electric | modicon_m340_bmxp342000 | - | No |
| Operating System | schneider-electric | modicon_m340_bmxp342010_firmware | - | Yes |
| Hardware | schneider-electric | modicon_m340_bmxp342010 | - | No |
| Operating System | schneider-electric | modicon_m340_bmxp3420102_firmware | - | Yes |
| Hardware | schneider-electric | modicon_m340_bmxp3420102 | - | No |
| Operating System | schneider-electric | modicon_m340_bmxp342000_firmware | - | Yes |
| Hardware | schneider-electric | modicon_m340_bmxp342000 | - | No |
| Operating System | schneider-electric | modicon_m340_bmxp342030_firmware | - | Yes |
| Hardware | schneider-electric | modicon_m340_bmxp342030 | - | No |
| Operating System | schneider-electric | modicon_m340_bmxp3420302_firmware | - | Yes |
| Hardware | schneider-electric | modicon_m340_bmxp3420302 | - | No |