CNVD-2018-06519 — Vulnetix

CNVD-2018-06519 PUBLISHED

Schneider Electric Modicon Premium\Modicon Quantum\Modicon M340\Modicon BMXNOR0200都是法国施耐德电气（Schneider Electric）公司的可编程控制器产品。 Schneider Electric多款产品存在弱加密算法漏洞，该漏洞源于FTP服务器未限制命令参数的长度，这可能会导致缓冲区溢出。

Affected Products

Vendor	Product	Versions
	Schneider Electric Modicon Premium
	Schneider Electric Modicon Quantum
	Schneider Electric Modicon M340
	Schneider Electric Modicon X80 RTU (BMXNOR0200H)

Timeline

Mar 28, 2018 CVE ID Reserved
Mar 28, 2018 CVE Published

References

https://ics-cert.us-cert.gov/advisories/ICSA-18-086-01 url

Open in Interactive Console →