ICSA-15-351-01
·
Published 2025-06-09
·
View on CISA ICS-CERT ↗
Schneider Electric Modicon M340 Buffer Overflow Vulnerability
CVSS 7.5
HIGH
CVEs (1)
Remediations
- Install firmware newer than January 16, 2016.
- Schneider Electric recommends blocking Port 80 using a firewall as a temporary workaround.
Affected Vendors
Schneider Electric
Affected Products (13)
Schneider Electric
·
Modicon M340 PLC
BMXNOC0401
Schneider Electric
·
Modicon M340 PLC
BMXNOE0100
Schneider Electric
·
Modicon M340 PLC
BMXNOE0100H
Schneider Electric
·
Modicon M340 PLC
BMXNOE0110
Schneider Electric
·
Modicon M340 PLC
BMXNOE0110H
Schneider Electric
·
Modicon M340 PLC
BMXNOR0200
Schneider Electric
·
Modicon M340 PLC
BMXNOR0200H
Schneider Electric
·
Modicon M340 PLC
BMXP342020
Schneider Electric
·
Modicon M340 PLC
BMXP342020H
Schneider Electric
·
Modicon M340 PLC
BMXP342030
Schneider Electric
·
Modicon M340 PLC
BMXP3420302
Schneider Electric
·
Modicon M340 PLC
BMXP3420302H
Schneider Electric
·
Modicon M340 PLC
BMXPRA0100
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more