Risk Scores
CVSS v3.1
8.600000381469727
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
EPSS Score
0.46%
63.9th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| schneider-electric | modicon_bmenoc_0311_firmware | |
| schneider-electric | modicon_bmenoc_0321_firmware | |
| schneider-electric | modicon_m580_firmware | |
| n/a | Modicon M580 CPU (BMEx58*) and Modicon M580 communication module (BMENOC0311, BMENOC0321) (see notification for version info) | Modicon M580 CPU (BMEx58*) and Modicon M580 communication module (BMENOC0311, BMENOC0321) (see notification for version info) |
Timeline
- Oct 8, 2019 CVE Published
- Apr 14, 2021 EPSS Score
- Jun 22, 2021 EPSS Score
- Jun 28, 2021 PoC Published
- Aug 23, 2021 EPSS Score
- Oct 24, 2021 EPSS Score
- Dec 11, 2021 PoC Published
- Dec 13, 2021 PoC Published
- Jan 6, 2022 EPSS Score
- Feb 4, 2022 EPSS Score
- Feb 25, 2022 EPSS Score
- Apr 1, 2022 EPSS Score
References
- https://www.se.com/ww/en/download/document/SEVD-2019-281-04/ url
- https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-348-02 advisory
- https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-348-01 advisory
- https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-348-03 advisory
- https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2019-281-04 advisory
- https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-348-04 advisory
- https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-313-05 advisory
- https://download.schneider-electric.com/files?p_enDocType=Technical+leaflet&p_File_Name=SEVD-2019-281-02_Modicon_Controllers.pdf&p_Doc_Ref=SEVD-2019-281-02 advisory
- https://download.schneider-electric.com/files?p_enDocType=Technical+leaflet&p_File_Name=SEVD-2019-134-04-Floating-License-Manager-Update_V2.1.pdf&p_Doc_Ref=SEVD-2019-134-04 advisory
- https://download.schneider-electric.com/files?p_enDocType=Technical+leaflet&p_File_Name=SEVD-2018-327-01-Embedded-Web-Servers-Modicon+V3.0.pdf&p_Doc_Ref=SEVD-2018-327-01 advisory
- https://download.schneider-electric.com/files?p_enDocType=Technical+leaflet&p_File_Name=SEVD-2019-281-04_Modicon_Controllers.pdf&p_Doc_Ref=SEVD-2019-281-04 advisory
- https://download.schneider-electric.com/files?p_enDocType=Technical+leaflet&p_File_Name=SEVD-2019-281-01_Modicon_Controllers.pdf&p_Doc_Ref=SEVD-2019-281-01 advisory
- https://download.schneider-electric.com/files?p_enDocType=Technical+leaflet&p_File_Name=SEVD-2019-225-04_SoMachine_SoMove_V2.0.pdf&p_Doc_Ref=SEVD-2019-225-04 advisory
- https://download.schneider-electric.com/files?p_enDocType=Technical+leaflet&p_File_Name=SEVD-2019-281-03_Modicon_Controllers.pdf&p_Doc_Ref=SEVD-2019-281-03 advisory
- https://nvd.nist.gov/vuln/detail/CVE-2019-6848 advisory
- https://www.schneider-electric.com/ww/en/download/document/SEVD-2019-281-04 url
- https://www.se.com/ww/en/download/document/SEVD-2019-281-04 url