CVE-2020-7477
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
23/03/2020
Last modified:
25/03/2020
Description
A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Quantum Ethernet Network module 140NOE771x1 (Versions 7.0 and prior), Quantum processors with integrated Ethernet – 140CPU65xxxxx (all Versions), and Premium processors with integrated Ethernet (all Versions), which could cause a Denial of Service when sending a specially crafted command over Modbus.
Impact
Base Score 3.x
7.50
Severity 3.x
HIGH
Base Score 2.0
5.00
Severity 2.0
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:schneider-electric:140noe77101_firmware:*:*:*:*:*:*:*:* | 7.0 (including) | |
| cpe:2.3:h:schneider-electric:140noe77101:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:schneider-electric:140noe77111_firmware:*:*:*:*:*:*:*:* | 7.0 (including) | |
| cpe:2.3:h:schneider-electric:140noe77111:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:schneider-electric:tsxh5744m_firmware:*:*:*:*:*:*:*:* | ||
| cpe:2.3:h:schneider-electric:tsxh5744m:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:schneider-electric:tsxh5724m_firmware:*:*:*:*:*:*:*:* | ||
| cpe:2.3:h:schneider-electric:tsxh5724m:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:schneider-electric:tsxp576634m_firmware:*:*:*:*:*:*:*:* | ||
| cpe:2.3:h:schneider-electric:tsxp576634m_:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:schneider-electric:tsxp57554m_firmware:*:*:*:*:*:*:*:* | ||
| cpe:2.3:h:schneider-electric:tsxp57554m:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:schneider-electric:tsxp575634m_firmware:*:*:*:*:*:*:*:* | ||
| cpe:2.3:h:schneider-electric:tsxp575634m:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:schneider-electric:tsxp57454m_firmware:*:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page