Vulnerability: Hash Collision Attacks in Schneider Electric's Modicon Controllers

CVE-2018-7242 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

Vulnerable hash algorithms exists in Schneider Electric's Modicon Premium, Modicon Quantum, Modicon M340, and BMXNOR0200 controllers in all versions of the communication modules. The algorithm used to encrypt the password is vulnerable to hash collision attacks.

Learn more about our Web Application Penetration Testing UK.