Intrusion Prevention

Schneider.Electric.Modicon.M580.UMAS.0x28.DoS

Description

This indicates an attack attempt against a Denial of Service vulnerability in Schneider Electric Modicon M580.
The vulnerability is caused by a design issue when the vulnerable software handles a crafted Modbus request. A remote attacker may be able to exploit this to cause a denial of service condition on the affected system, via a crafted Modbus request.

Affected Products

Schneider Electric Modicon M580
Schneider Electric Modicon M340
Schneider Electric Modicon Quantum
Schneider Electric Modicon Premium

Impact

Denial of Service: Remote attackers can crash vulnerable systems.

Recommended Actions

Apply the most recent upgrade or patch from the vendor.
https://www.schneider-electric.com/en/download/document/SEVD-2019-134-11/

CVE References

CVE-2018-7853