Lucene search

K
cvelistSchneiderCVELIST:CVE-2020-7535
HistoryDec 11, 2020 - 12:51 a.m.

CVE-2020-7535

2020-12-1100:51:37
CWE-22
schneider
www.cve.org

0.003 Low

EPSS

Percentile

71.4%

A CWE-22: Improper Limitation of a Pathname to a Restricted Directory (β€˜Path Traversal’ Vulnerability Type) vulnerability exists in the Web Server on Modicon M340, Legacy Offers Modicon Quantum and Modicon Premium and associated Communication Modules (see security notification for affected versions), that could cause disclosure of information when sending a specially crafted request to the controller over HTTP.

CNA Affected

[
  {
    "product": "Web Server on Modicon M340, Legacy Offers Modicon Quantum and Modicon Premium and associated Communication Modules (see security notification for affected versions)",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Web Server on Modicon M340, Legacy Offers Modicon Quantum and Modicon Premium and associated Communication Modules (see security notification for affected versions)"
      }
    ]
  }
]

0.003 Low

EPSS

Percentile

71.4%

Related for CVELIST:CVE-2020-7535