HTTP Response Splitting Vulnerability in Schneider Electric PLCs
CVE-2018-7830

7.5HIGH

Key Information:

Vendor: Schneider Electric
Status: Embedded Web Servers In All Modicon M340, Premium, Quantum Plcs And Bmxnor0200
Vendor: CVE Published:; 30 November 2018

Summary

An HTTP Response Splitting vulnerability in the embedded web servers of Schneider Electric's Modicon M340, Premium, Quantum PLCs and BMXNOR0200 can lead to denial of service. This occurs through the improper neutralization of CRLF sequences in HTTP headers, allowing an attacker to send specially crafted HTTP requests. The attack may interrupt service for approximately one minute, impacting the PLCs' functionality.

Affected Version(s)

Embedded Web Servers in all Modicon M340, Premium, Quantum PLCs and BMXNOR0200 Embedded Web Servers in all Modicon M340, Premium, Quantum PLCs and BMXNOR0200

References

https://www.tenable.com/security/research/tra-2018-38

x_refsource_MISC

https://www.schneider-electric.com/en/download/document/S...

x_refsource_CONFIRM

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Nov 30, 2018
Vulnerability Reserved
Mar 8, 2018