Known Vulnerabilities for Modbus by Schneider-electric
Listed below are 2 of the newest known vulnerabilities associated with "Modbus" by "Schneider-electric".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-54410 json | nanoMODBUS through v1.23.0 contains an off-by-one buffer overflow in the recv_msg_header() function of the Modbus/TCP server ... | Not Provided | 2026-06-14 | 2026-06-15 |
| CVE-2026-35227 json | An unauthenticated remote attacker may exhaust all available TCP connections in the CODESYS Modbus TCP Server stack if a race... | Not Provided | 2026-05-12 | 2026-05-12 |
| CVE-2026-29972 json | nanoMODBUS through v1.22.0 has a stack-based buffer overflow in recv_read_registers_res() in nanomodbus.c. When a client call... | Not Provided | 2026-05-08 | 2026-05-08 |
| CVE-2026-13590 json | A security flaw has been discovered in seladb PcapPlusPlus 25.05. This impacts the function pcpp::ModbusLayer::getLength in t... | Not Provided | 2026-06-29 | 2026-06-30 |
| CVE-2026-12819 json | Delta Electronics DVP12SE PLC exposes a Modbus TCP service over a specified port without authentication or access control, pe... | Not Provided | 2026-06-30 | 2026-06-30 |
| CVE-2026-12818 json | Delta Electronics DVP12SE PLCs are susceptible to a resource allocation vulnerability without limits or throttling (CWE-770) ... | Not Provided | 2026-06-30 | 2026-06-30 |
| CVE-2025-13605 json | 3onedata modbus gateway device model GW1101-1D(RS-485)-TB-P (hardware version V2.2.0) allows authenticated users to execute... | Not Provided | 2026-05-04 | 2026-05-04 |
| CVE-2021-22779 json | Authentication Bypass by Spoofing vulnerability exists in EcoStruxure Control Expert (all versions prior to V15.0 SP1, includ... | Not Provided | 2021-07-14 | 2026-05-29 |
| CVE-2021-22764 json | A CWE-287: Improper Authentication vulnerability exists in PowerLogic PM55xx, PowerLogic PM8ECC, PowerLogic EGX100 and PowerL... | Not Provided | 2021-06-11 | 2026-05-29 |
| CVE-2021-22659 json | Rockwell Automation MicroLogix 1400 Version 21.6 and below may allow a remote unauthenticated attacker to send a specially cr... | Not Provided | 2021-03-25 | 2026-06-03 |