CVE-2020-7540 — CRITICAL (9.8)

Q: How severe is CVE-2020-7540?

CVE-2020-7540 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.

Q: Is there a patch for CVE-2020-7540?

Check the references section above for vendor advisories and patch information. Affected products include: Schneider-Electric Modicon M340 Bmxp341000 Firmware, Schneider-Electric Modicon M340 Bmxp341000, Schneider-Electric Modicon M340 Bmxp342000 Firmware, Schneider-Electric Modicon M340 Bmxp342000, Schneider-Electric Modicon M340 Bmxp3420102 Firmware.

Vulnerability Description

A CWE-306: Missing Authentication for Critical Function vulnerability exists in the Web Server on Modicon M340, Legacy Offers Modicon Quantum and Modicon Premium and associated Communication Modules (see security notification for affected versions), that could cause unauthenticated command execution in the controller when sending special HTTP requests.

CVSS Score

9.8

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Schneider-Electric	Modicon M340 Bmxp341000 Firmware	< 3.30
Schneider-Electric	Modicon M340 Bmxp341000	-
Schneider-Electric	Modicon M340 Bmxp342000 Firmware	< 3.30
Schneider-Electric	Modicon M340 Bmxp342000	-
Schneider-Electric	Modicon M340 Bmxp3420102 Firmware	< 3.30
Schneider-Electric	Modicon M340 Bmxp3420102	-
Schneider-Electric	Modicon M340 Bmxp3420102Cl Firmware	< 3.30
Schneider-Electric	Modicon M340 Bmxp3420102Cl	-
Schneider-Electric	Modicon M340 Bmxp342020 Firmware	< 3.30
Schneider-Electric	Modicon M340 Bmxp342020	-
Schneider-Electric	Modicon M340 Bmxp3420302 Firmware	< 3.30
Schneider-Electric	Modicon M340 Bmxp3420302	-
Schneider-Electric	Modicon M340 Bmxp3420302Cl Firmware	< 3.30
Schneider-Electric	Modicon M340 Bmxp3420302Cl	-
Schneider-Electric	Bmxnoe0100 Firmware	< 3.3
Schneider-Electric	Bmxnoe0100	-
Schneider-Electric	Bmxnoe0110 Firmware	< 6.5
Schneider-Electric	Bmxnoe0110	-
Schneider-Electric	140Noe77101 Firmware	< 7.1
Schneider-Electric	140Noe77101	-

Related Weaknesses (CWE)

CWE-306

References

https://www.se.com/ww/en/download/document/SEVD-2020-343-04/Vendor Advisory
https://www.se.com/ww/en/download/document/SEVD-2020-343-04/Vendor Advisory

FAQ

What is CVE-2020-7540?

CVE-2020-7540 is a vulnerability with a CVSS score of 9.8 (CRITICAL). A CWE-306: Missing Authentication for Critical Function vulnerability exists in the Web Server on Modicon M340, Legacy Offers Modicon Quantum and Modicon Premium and associated Communication Modules (...

How severe is CVE-2020-7540?

CVE-2020-7540 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.

Is there a patch for CVE-2020-7540?

Check the references section above for vendor advisories and patch information. Affected products include: Schneider-Electric Modicon M340 Bmxp341000 Firmware, Schneider-Electric Modicon M340 Bmxp341000, Schneider-Electric Modicon M340 Bmxp342000 Firmware, Schneider-Electric Modicon M340 Bmxp342000, Schneider-Electric Modicon M340 Bmxp3420102 Firmware.