CVE-2019-6847

CVE-2019-6847

Vendor N/A
Product Modicon M580, Modicon M340, and Modicon BMxCRA / 140CRA modules (see notification for version info)
Weakness CWE-755
Published October 29, 2019
Last update August 4, 2024

CVSS base score

What the vulnerability does

01Description

A CWE-755: Improper Handling of Exceptional Conditions vulnerability exists in Modicon M580, Modicon M340, Modicon BMxCRA and 140CRA modules (all firmware versions), which could cause a Denial of Service attack on the FTP service when upgrading the firmware with a version incompatible with the application in the controller using FTP protocol.

Key dates

02Disclosure timeline

October 29, 2019 CVE published
August 4, 2024 Record updated