Known Vulnerabilities for Bmxp342020 Firmware by Schneider-electric

Listed below are 10 of the newest known vulnerabilities associated with "Bmxp342020 Firmware" by "Schneider-electric".

These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.

Data on known vulnerable versions is also displayed based on information from known CPEs

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2021-22788 A CWE-787: Out-of-bounds Write vulnerability exists that could cause denial of service when an attacker sends a specially cra... 7.5 - HIGH 2022-02-11 2022-02-23
CVE-2021-22787 A CWE-20: Improper Input Validation vulnerability exists that could cause denial of service of the device when an attacker se... 7.5 - HIGH 2022-02-11 2022-02-23
CVE-2021-22785 A CWE-200: Information Exposure vulnerability exists that could cause sensitive information of files located in the web root ... 7.5 - HIGH 2022-02-11 2022-10-25
CVE-2020-7541 A CWE-425: Direct Request ('Forced Browsing') vulnerability exists in the Web Server on Modicon M340, Legacy Offers Modicon Q... 5.3 - MEDIUM 2020-12-11 2020-12-14
CVE-2020-7540 A CWE-306: Missing Authentication for Critical Function vulnerability exists in the Web Server on Modicon M340, Legacy Offers... 9.8 - CRITICAL 2020-12-11 2020-12-14
CVE-2020-7539 A CWE-754 Improper Check for Unusual or Exceptional Conditions vulnerability exists in the Web Server on Modicon M340, Legacy... 7.5 - HIGH 2020-12-11 2020-12-14
CVE-2020-7537 A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Modicon M580, Modicon M340, Legacy Co... 7.5 - HIGH 2020-12-11 2021-08-18
CVE-2020-7536 A CWE-754:Improper Check for Unusual or Exceptional Conditions vulnerability exists in Modicon M340 CPUs (BMXP34* versions pr... 7.5 - HIGH 2020-12-11 2020-12-14
CVE-2020-7535 A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal' Vulnerability Type) vulnerability exi... 7.5 - HIGH 2020-12-11 2020-12-14
CVE-2020-7534 A CWE-352: Cross-Site Request Forgery (CSRF) vulnerability exists on the web server used, that could cause a leak of sensitiv... 8.8 - HIGH 2022-02-04 2022-02-10
Results limited to 10 most recent vulnerabilities

Known Affected Configurations (CPE V2.3)

Type Vendor Product Version Update Edition Language
Operating
System		Schneider-electricBmxp342020 Firmware3.30AllAllAll
Operating
System		Schneider-electricBmxp342020 Firmware-AllAllAll
© CVE.report 2026 |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

CVE.report and Source URL Uptime Status status.cve.report