← back
CVE-2018-7811

CVE-2018-7811

EPSS 3.5%
An Unverified Password Change vulnerability exists in the embedded web servers in all Modicon M340, Premium, Quantum PLCs and BMXNOR0200 which could allow an unauthenticated remote user to access the change password function of the web server
Affected products
Schneider Electric SE · Embedded Web Servers in all Modicon M340, Premium, Quantum PLCs and BMXNOR0200

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://security.cse.iitk.ac.in/responsible-disclosurehttps://www.schneider-electric.com/en/download/document/SEVD-2018-327-01/https://www.tenable.com/security/research/tra-2018-38