Schneider Electric Modicon M340 SNMP Server SNMP Packet Truncate denial of service – DigitalMunition




Exploit Cybersecurity study of the dark web exposes vulnerability to machine identities -- ScienceDaily

Published on September 18th, 2019 📆 | 5966 Views ⚑

0

Schneider Electric Modicon M340 SNMP Server SNMP Packet Truncate denial of service

CVSS Meta Temp Score Current Exploit Price (≈)
3.4 $0-$5k

A vulnerability was found in Schneider Electric BMXNOR0200H Ethernet Serial RTU Module and Modicon M340 (version unknown). It has been classified as problematic. Affected is an unknown code of the component SNMP Server. The manipulation as part of a SNMP Packet leads to a denial of service vulnerability (Truncate). CWE is classifying the issue as CWE-404. This is going to have an impact on availability.

The weakness was released 09/17/2019. The advisory is shared for download at schneider-electric.com. This vulnerability is traded as CVE-2019-6813 since 01/25/2019. There are neither technical details nor an exploit publicly available.

It is possible to mitigate the weakness by firewalling udp/161 (snmp).

Vendor

Name

VulDB Meta Base Score: 3.5
VulDB Meta Temp Score: 3.4

VulDB Base Score: ≈3.5
VulDB Temp Score: ≈3.4
VulDB Vector: 🔒
VulDB Reliability: 🔍

VulDB Base Score: 🔒
VulDB Temp Score: 🔒
VulDB Reliability: 🔍
Class: Denial of service / Truncate (CWE-404)
Local: Yes
Remote: No

Availability: 🔒
Status: Not defined

Price Prediction: 🔍
Current Price Estimation: 🔒

Threat Intelligenceinfoedit

Threat: 🔍
Adversaries: 🔍
Geopolitics: 🔍
Economy: 🔍
Predictions: 🔍
Remediation: 🔍Recommended: Firewall
Status: 🔍

0-Day Time: 🔒

Firewalling: 🔒

01/25/2019 CVE assigned
09/17/2019 +235 days Advisory disclosed
09/18/2019 +1 days VulDB entry created
09/18/2019 +0 days VulDB last updateVendor: schneider-electric.com

Advisory: schneider-electric.com

CVE: CVE-2019-6813 (🔒)

Created: 09/18/2019 11:24 AM
Complete: 🔍

Comments

No comments yet. Please log in to comment.

Check our Alexa App!

https://vuldb.com/?id.141936

Download Premium WordPress Themes Free
Download Nulled WordPress Themes
Download Best WordPress Themes Free Download
Download Best WordPress Themes Free Download
free download udemy paid course

Tagged with:



Leave a Reply ✍


loading...