CVE-2012-0931

9.8 CRITICAL

Published: January 28, 2012 Modified: April 29, 2026

Description

Schneider Electric Modicon Quantum PLC does not perform authentication between the Unity software and PLC, which allows remote attackers to cause a denial of service or possibly execute arbitrary code via unspecified vectors.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

CVSS v3.x Details

0.0 Low Medium High Critical 10.0

Vector String

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://secunia.com/advisories/47723

Source: cve@mitre.org

Not Applicable

http://www.securityfocus.com/bid/51605

Source: cve@mitre.org

Third Party Advisory VDB Entry

http://www.us-cert.gov/control_systems/pdf/ICS-ALERT-12-020-03.pdf

Source: cve@mitre.org

Broken Link

https://exchange.xforce.ibmcloud.com/vulnerabilities/72586

Source: cve@mitre.org

Third Party Advisory VDB Entry

https://us-cert.cisa.gov/ics/alerts/ICS-ALERT-12-020-03

Source: cve@mitre.org

Third Party Advisory US Government Resource

http://secunia.com/advisories/47723