CVE-2019-6819

{"id": "CVE-2019-6819", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 3.9}]}, "published": "2019-05-22T20:29:02.090", "references": [{"url": "http://www.securityfocus.com/bid/109004", "tags": ["Broken Link"], "source": "cybersecurity@se.com"}, {"url": "https://www.schneider-electric.com/en/download/document/SEVD-2019-134-05/", "tags": ["Vendor Advisory"], "source": "cybersecurity@se.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-754"}]}, {"type": "Secondary", "source": "cybersecurity@se.com", "description": [{"lang": "en", "value": "CWE-754"}]}], "descriptions": [{"lang": "en", "value": "A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists which could cause a possible Denial of Service when specific Modbus frames are sent to the controller in the products: Modicon M340 - firmware versions prior to V3.01, Modicon M580 - firmware versions prior to V2.80, All firmware versions of Modicon Quantum and Modicon Premium."}, {"lang": "es", "value": "Una CWE-754: Existe una vulnerabilidad de Comprobaci\u00f3n Inapropiada para condiciones inusuales o excepcionales, que podr\u00eda generar una posible Denegaci\u00f3n de Servicio cuando se env\u00edan tramas Modbus espec\u00edficas hacia el controlador en los productos: Modicon M340 - versiones de firmware anteriores a la V3.01, Modicon M580 - versiones de firmware anteriores a V2.80, y todas las versiones de firmware de Modicon Quantum y Modicon Premium."}], "lastModified": "2024-04-10T12:28:45.957", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:schneider-electric:modicon_m340_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "606AFE88-8C9A-4D18-9209-1193B628669F", "versionEndExcluding": "3.01"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:schneider-electric:modicon_m340_bmxp341000:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "178D2338-E48E-493C-992F-337AACE794DE"}, {"criteria": "cpe:2.3:h:schneider-electric:modicon_m340_bmxp341000h:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "69222495-4F18-434E-B86C-F63C5A2C1242"}, {"criteria": "cpe:2.3:h:schneider-electric:modicon_m340_bmxp342000:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "6D150239-27E2-4CBE-A931-5107C15E362F"}, {"criteria": "cpe:2.3:h:schneider-electric:modicon_m340_bmxp3420102:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "98212CF5-BCF4-4A55-B62A-484569687B4E"}, {"criteria": "cpe:2.3:h:schneider-electric:modicon_m340_bmxp3420102cl:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "D30336F0-EDCF-486C-B52E-D0C53BCDFC65"}, {"criteria": "cpe:2.3:h:schneider-electric:modicon_m340_bmxp342020:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "99F2F851-C18F-4CB8-B47C-516F2AC7955D"}, {"criteria": "cpe:2.3:h:schneider-electric:modicon_m340_bmxp342020h:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "56BAED8B-EEFA-45D7-A5A3-9B62067CE24C"}, {"criteria": "cpe:2.3:h:schneider-electric:modicon_m340_bmxp3420302:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "354968F7-C41B-4C21-8E47-81DC07DF0EA5"}, {"criteria": "cpe:2.3:h:schneider-electric:modicon_m340_bmxp3420302cl:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "32091F91-9397-4506-8801-C68B9E8B60F0"}, {"criteria": "cpe:2.3:h:schneider-electric:modicon_m340_bmxp3420302h:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "075A16D1-F4DF-4DCB-8DF9-152E282CE01F"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:schneider-electric:modicon_m580_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6FDEB227-D50B-402C-9C11-E29F52BC10BB", "versionEndExcluding": "2.80"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:schneider-electric:bmeh582040:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "4E6E5E62-BBA8-4370-A232-8E1196757C3E"}, {"criteria": "cpe:2.3:h:schneider-electric:bmeh582040c:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "9C393EAE-D2A1-42BC-8CE8-2DCAC96EB769"}, {"criteria": "cpe:2.3:h:schneider-electric:bmeh584040:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E2A8BF9D-AFD1-4F19-A0DB-5EB6F343D890"}, {"criteria": "cpe:2.3:h:schneider-electric:bmeh584040c:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "63D48211-A734-4F98-A4D5-569268335757"}, {"criteria": "cpe:2.3:h:schneider-electric:bmeh586040:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "38D22DD5-677B-42E8-AE1F-11601D4BF110"}, {"criteria": "cpe:2.3:h:schneider-electric:bmeh586040c:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "79907FE7-B4B0-4732-9287-B7ED13115F6C"}, {"criteria": "cpe:2.3:h:schneider-electric:modicon_m580_bmep581020:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "2317F260-7AA2-4178-B468-03DF36223E26"}, {"criteria": "cpe:2.3:h:schneider-electric:modicon_m580_bmep581020h:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "3D7DDC42-37A1-43B0-AD46-2E0D098564BA"}, {"criteria": "cpe:2.3:h:schneider-electric:modicon_m580_bmep582020:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "765E4FEE-255E-4C47-824A-5661B84B490B"}, {"criteria": "cpe:2.3:h:schneider-electric:modicon_m580_bmep582020h:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "B1FEA377-3C45-4F88-B233-088A24BD0771"}, {"criteria": "cpe:2.3:h:schneider-electric:modicon_m580_bmep582040:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "EBCCDD6D-35CE-4680-8B0C-86584B1D8958"}, {"criteria": "cpe:2.3:h:schneider-electric:modicon_m580_bmep582040h:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "68FD5968-C522-4231-A98C-93D3101B6148"}, {"criteria": "cpe:2.3:h:schneider-electric:modicon_m580_bmep582040s:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "C02B27F6-B8CF-4D3B-9DA6-054F540EA6B6"}, {"criteria": "cpe:2.3:h:schneider-electric:modicon_m580_bmep583020:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "BBC38FF1-693E-4899-883C-1B7B80A52F2C"}, {"criteria": "cpe:2.3:h:schneider-electric:modicon_m580_bmep583040:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "002E7F33-6729-4C35-9DDA-7D8383BD5668"}, {"criteria": "cpe:2.3:h:schneider-electric:modicon_m580_bmep584020:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "47DFEBAC-2F1D-4870-8425-2199BF80B425"}, {"criteria": "cpe:2.3:h:schneider-electric:modicon_m580_bmep584040:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "FC4A1DF2-FF4C-4DBE-BF74-6A4A09E3DECE"}, {"criteria": "cpe:2.3:h:schneider-electric:modicon_m580_bmep584040s:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "6222C1F8-BE52-4666-B7F5-2E8BBC214F70"}, {"criteria": "cpe:2.3:h:schneider-electric:modicon_m580_bmep585040:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "5376D9F4-8AFB-4909-A11B-33C54C4220DB"}, {"criteria": "cpe:2.3:h:schneider-electric:modicon_m580_bmep585040c:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "CADB178B-FEFD-48A9-B155-0E8F6D490229"}, {"criteria": "cpe:2.3:h:schneider-electric:modicon_m580_bmep586040:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "6B3C1879-269B-47EB-891B-EF2E90C911D7"}, {"criteria": "cpe:2.3:h:schneider-electric:modicon_m580_bmep586040c:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "5771A1A5-3DAF-4869-A24F-F9B0A38B5DA5"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:schneider-electric:modicon_quantum_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "745CC7A7-70FB-4551-8EBF-600B7A6236D7"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:schneider-electric:modicon_quantum:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "A9B7CEF7-B9BA-4923-808F-DA2931569EBB"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:schneider-electric:modicon_premium_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "619CFD8D-9652-4AAB-AFC4-796B3F10F61F"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:schneider-electric:modicon_premium:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "F00936E2-E6EF-4ABF-8666-7D83BE424F42"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "cybersecurity@se.com"}