What the vulnerability does

01Description

A CWE-248: Uncaught Exception vulnerability exists in Modicon M580 (firmware version prior to V2.90) and Modicon M340 (firmware version prior to V3.10), which could cause a possible denial of service when writing to specific memory addresses in the controller over Modbus.

Key dates

02Disclosure timeline

September 17, 2019 CVE published
May 29, 2026 Record updated