CVE-2019-6819 - Vulnerability Details

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists which could cause a possible Denial of Service when specific Modbus frames are sent to the controller in the products: Modicon M340 - firmware versions prior to V3.01, Modicon M580 - firmware versions prior to V2.80, All firmware versions of Modicon Quantum and Modicon Premium.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

This CVE is not in the KEV list.

Exploitation none

Automatable yes

Technical Impact partial

Vendors	Products
Schneider-electric	Bmeh582040 Bmeh582040c Bmeh584040 Bmeh584040c Bmeh586040 Bmeh586040c Modicon M340 Bmxp341000 Modicon M340 Bmxp341000h Modicon M340 Bmxp342000 Modicon M340 Bmxp3420102 Modicon M340 Bmxp3420102cl Modicon M340 Bmxp342020 Modicon M340 Bmxp342020h Modicon M340 Bmxp3420302 Modicon M340 Bmxp3420302cl Modicon M340 Bmxp3420302h Modicon M340 Firmware Modicon M580 Bmep581020 Modicon M580 Bmep581020h Modicon M580 Bmep582020 Modicon M580 Bmep582020h Modicon M580 Bmep582040 Modicon M580 Bmep582040h Modicon M580 Bmep582040s Modicon M580 Bmep583020 Modicon M580 Bmep583040 Modicon M580 Bmep584020 Modicon M580 Bmep584040 Modicon M580 Bmep584040s Modicon M580 Bmep585040 Modicon M580 Bmep585040c Modicon M580 Bmep586040 Modicon M580 Bmep586040c Modicon M580 Firmware Modicon Premium Modicon Premium Firmware Modicon Quantum Modicon Quantum Firmware

Configuration 1 [-]

AND

cpe:2.3:o:schneider-electric:modicon_m340_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:schneider-electric:modicon_m340_bmxp341000:-:::::::*
	cpe:2.3:h:schneider-electric:modicon_m340_bmxp341000h:-:::::::*
	cpe:2.3:h:schneider-electric:modicon_m340_bmxp342000:-:::::::*
	cpe:2.3:h:schneider-electric:modicon_m340_bmxp3420102:-:::::::*
	cpe:2.3:h:schneider-electric:modicon_m340_bmxp3420102cl:-:::::::*
	cpe:2.3:h:schneider-electric:modicon_m340_bmxp342020:-:::::::*
	cpe:2.3:h:schneider-electric:modicon_m340_bmxp342020h:-:::::::*
	cpe:2.3:h:schneider-electric:modicon_m340_bmxp3420302:-:::::::*
	cpe:2.3:h:schneider-electric:modicon_m340_bmxp3420302cl:-:::::::*
	cpe:2.3:h:schneider-electric:modicon_m340_bmxp3420302h:-:::::::*

Configuration 2 [-]

AND

cpe:2.3:o:schneider-electric:modicon_m580_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:schneider-electric:bmeh582040:-:::::::*
	cpe:2.3:h:schneider-electric:bmeh582040c:-:::::::*
	cpe:2.3:h:schneider-electric:bmeh584040:-:::::::*
	cpe:2.3:h:schneider-electric:bmeh584040c:-:::::::*
	cpe:2.3:h:schneider-electric:bmeh586040:-:::::::*
	cpe:2.3:h:schneider-electric:bmeh586040c:-:::::::*
	cpe:2.3:h:schneider-electric:modicon_m580_bmep581020:-:::::::*
	cpe:2.3:h:schneider-electric:modicon_m580_bmep581020h:-:::::::*
	cpe:2.3:h:schneider-electric:modicon_m580_bmep582020:-:::::::*
	cpe:2.3:h:schneider-electric:modicon_m580_bmep582020h:-:::::::*
	cpe:2.3:h:schneider-electric:modicon_m580_bmep582040:-:::::::*
	cpe:2.3:h:schneider-electric:modicon_m580_bmep582040h:-:::::::*
	cpe:2.3:h:schneider-electric:modicon_m580_bmep582040s:-:::::::*
	cpe:2.3:h:schneider-electric:modicon_m580_bmep583020:-:::::::*
	cpe:2.3:h:schneider-electric:modicon_m580_bmep583040:-:::::::*
	cpe:2.3:h:schneider-electric:modicon_m580_bmep584020:-:::::::*
	cpe:2.3:h:schneider-electric:modicon_m580_bmep584040:-:::::::*
	cpe:2.3:h:schneider-electric:modicon_m580_bmep584040s:-:::::::*
	cpe:2.3:h:schneider-electric:modicon_m580_bmep585040:-:::::::*
	cpe:2.3:h:schneider-electric:modicon_m580_bmep585040c:-:::::::*
	cpe:2.3:h:schneider-electric:modicon_m580_bmep586040:-:::::::*
	cpe:2.3:h:schneider-electric:modicon_m580_bmep586040c:-:::::::*

Configuration 3 [-]

AND

cpe:2.3:o:schneider-electric:modicon_quantum_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:schneider-electric:modicon_quantum:-:*:*:*:*:*:*:*

Configuration 4 [-]

AND

cpe:2.3:o:schneider-electric:modicon_premium_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:schneider-electric:modicon_premium:-:*:*:*:*:*:*:*

No data.

References

Link	Providers
http://www.securityfocus.com/bid/109004
https://www.schneider-electric.com/en/download/document/SEVD-2019-134-05/

History

Fri, 29 May 2026 15:30:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

MITRE

Status: PUBLISHED

Assigner: schneider

Published: 2019-05-22T19:45:08.000Z

Updated: 2026-05-29T14:30:11.420Z

Reserved: 2019-01-25T00:00:00.000Z

Link: CVE-2019-6819

Vulnrichment

Updated: 2024-08-04T20:31:04.277Z

NVD

Status : Modified

Published: 2019-05-22T20:29:02.090

Modified: 2026-05-29T15:16:17.517

Link: CVE-2019-6819

Redhat

No data.

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

Exploitation none

Automatable yes

Technical Impact partial

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object