CVE-2013-2761

Schneider Electric Modicon M340 - Authenticated Denial of Service via Crafted FTP Traffic

Title source: llm

Description

The Schneider Electric M340 BMXNOE01xx and BMXP3420xx PLC modules allow remote authenticated users to cause a denial of service (module crash) via crafted FTP traffic, as demonstrated by the FileZilla FTP client.

References (2)

Core 2

Core References

Vendor Advisory x_refsource_confirm

http://www.schneider-electric.com/download/ww/en/details/35081317-Vulnerability-Disclosure-for-Quantum-Premium-and-M340/

Vendor Advisory x_refsource_confirm

http://www.schneider-electric.com/download/ww/en/file/36555639-SEVD-2013-023-01.pdf/?fileName=SEVD-2013-023-01.pdf&reference=SEVD-2013-023-01&docType=Technical-paper

Scores

EPSS 0.0035

EPSS Percentile 57.6%

Details

CWE

CWE-119

Status published

Products (2)

schneider-electric/modicon_m340 bmxnoe01xx

schneider-electric/modicon_m340 bmxp3420xx

Published Apr 04, 2013

Tracked Since Feb 18, 2026