CVE-2018-7838

CVE-2018-7838

Vendor Modicon
Product Modicon M580 CPU - BMEP582040 all versions before V2.90 and Modicon Ethernet Module BMENOC0301 all versions before V2.16
Weakness CWE-119
Published July 15, 2019
Last update August 5, 2024

CVSS base score

What the vulnerability does

01Description

A CWE-119 Buffer Errors vulnerability exists in Modicon M580 CPU - BMEP582040, all versions before V2.90, and Modicon Ethernet Module BMENOC0301, all versions before V2.16, which could cause denial of service on the FTP service of the controller or the Ethernet BMENOC module when it receives a FTP CWD command with a data length greater than 1020 bytes. A power cycle is then needed to reactivate the FTP service.

Key dates

02Disclosure timeline

July 15, 2019 CVE published
August 5, 2024 Record updated