You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
bmxnoe0100
About this tag
The bmxnoe0100 tag covers security vulnerabilities and firmware updates for the Schneider Electric Modicon M340 programmable logic controller family, specifically the BMXNOE0100 and BMXNOE0110 Ethernet communication modules. Discussions include CVE-2024-5056, which exposes files or directories and can disrupt firmware updates or web/FTP services, and CVE-2025-6625, a high-severity FTP denial-of-service flaw. Both threads detail Schneider Electric's advisories, released firmware patches, and recommended network-level mitigations for operational technology environments. Topics center on industrial control system security, Modbus/TCP module hardening, and patch management for OT networks.
Schneider Electric has confirmed a security issue affecting the Modicon M340 family and two Ethernet communication modules — BMXNOE0100 and BMXNOE0110 — that can expose files or directories to external parties and, in some configurations, can prevent firmware updates or disrupt the embedded...
Schneider Electric has acknowledged a high-severity vulnerability in its Modicon M340 family and several M340 communication modules that can be triggered remotely by a specially crafted FTP command and may cause a denial-of-service condition; the flaw was assigned CVE‑2025‑6625 and carries a...