cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2020-7549,https://securityvulnerability.io/vulnerability/CVE-2020-7549,Improper Check Vulnerability in Modicon Controllers by Schneider Electric,"A vulnerability exists in the Web Server of Schneider Electric's Modicon M340, Quantum, and Premium controllers, including associated Communication Modules. This issue arises due to an improper check for unusual conditions, potentially allowing an attacker to send a series of specially crafted requests to the controller over HTTP. As a result, this may lead to a denial of HTTP and FTP services, disrupting normal operations and potentially impacting industrial processes.",Schneider Electric,"Web Server On Modicon M340, Legacy Offers Modicon Quantum And Modicon Premium And Associated Communication Modules (see Security Notification For Affected Versions)",5.3,MEDIUM,0.0009200000204145908,false,,false,false,false,,,false,false,,2020-12-11T00:52:26.000Z,0
CVE-2020-7541,https://securityvulnerability.io/vulnerability/CVE-2020-7541,Direct Request Vulnerability in Modicon Web Server by Schneider Electric,"A vulnerability in the Web Server of Schneider Electric's Modicon M340, Modicon Quantum, and Modicon Premium products allows unauthorized disclosure of sensitive data. This occurs when a malicious actor sends specially crafted requests to the controller over HTTP. The flaw stems from improper handling of direct requests, potentially exposing critical information if exploited.",Schneider Electric,"Web Server On Modicon M340, Legacy Offers Modicon Quantum And Modicon Premium And Associated Communication Modules (see Security Notification For Affected Versions)",5.3,MEDIUM,0.0008399999933317304,false,,false,false,false,,,false,false,,2020-12-11T00:52:09.000Z,0
CVE-2020-7540,https://securityvulnerability.io/vulnerability/CVE-2020-7540,Authentication Bypass in Modicon Controllers from Schneider Electric,"A Missing Authentication for Critical Function vulnerability exists in the web server of Schneider Electric’s Modicon controllers, including M340, Quantum, and Premium, as well as their associated communication modules. This flaw allows an unauthorized entity to execute commands on the controller simply by sending specially crafted HTTP requests. Such unauthorized access can lead to serious security risks and operational disruptions, making it essential for users to implement recommended security updates.",Schneider Electric,"Web Server On Modicon M340, Legacy Offers Modicon Quantum And Modicon Premium And Associated Communication Modules (see Security Notification For Affected Versions)",9.8,CRITICAL,0.0037799999117851257,false,,false,false,false,,,false,false,,2020-12-11T00:52:03.000Z,0
CVE-2020-7539,https://securityvulnerability.io/vulnerability/CVE-2020-7539,Denial of Service Vulnerability in Schneider Electric Modicon Controllers,"A vulnerability exists in the Web Server component of Schneider Electric's Modicon M340, Modicon Quantum, and Modicon Premium controllers. This issue, classified as an improper check for unusual or exceptional conditions, could lead to a denial of service when the controllers are exposed to specially crafted HTTP packets. Such an attack may disrupt the functionality of the affected devices, impacting system reliability and performance.",Schneider Electric,"Web Server On Modicon M340, Legacy Offers Modicon Quantum And Modicon Premium And Associated Communication Modules (see Security Notification For Affected Versions)",7.5,HIGH,0.0010300000431016088,false,,false,false,false,,,false,false,,2020-12-11T00:51:57.000Z,0
CVE-2020-7535,https://securityvulnerability.io/vulnerability/CVE-2020-7535,Path Traversal Flaw in Modicon Products by Schneider Electric,"A path traversal vulnerability exists in the Web Server of Schneider Electric's Modicon M340, Modicon Quantum, and Modicon Premium series, as well as in their associated communication modules. This security flaw could allow an attacker to craft specific HTTP requests that exploit improper limitations on file paths, potentially leading to the unauthorized disclosure of sensitive information.",Schneider Electric,"Web Server On Modicon M340, Legacy Offers Modicon Quantum And Modicon Premium And Associated Communication Modules (see Security Notification For Affected Versions)",7.5,HIGH,0.0033599999733269215,false,,false,false,false,,,false,false,,2020-12-11T00:51:37.000Z,0