CNVD-2019-45185 — Vulnetix

CNVD-2019-45185 PUBLISHED

Schneider Electric Modicon M340等都是法国施耐德电气（Schneider Electric）公司的可编程逻辑控制器产品。多款Schneider Electric产品存在授权问题漏洞。攻击者可借助/unsecure/embedded/builtin端点利用该漏洞在未经身份验证的情况下更改用户密码。

Affected Products

Vendor	Product	Versions
	Schneider Electric Modicon M340
	Schneider Electric Quantum PLCs
	Schneider Electric BMXNOR0200
	Schneider Electric Premium

Timeline

Dec 3, 2018 CVE ID Reserved
Dec 12, 2019 CVE Published

References

https://www.schneider-electric.com/en/download/document/SEVD-2018-327-01/ url

Open in Interactive Console →