CVE-2020-7487

EPSS 0.7%CWE-345

A CWE-345: Insufficient Verification of Data Authenticity vulnerability exists which could allow the attacker to execute malicious code on the Modicon M218, M241, M251, and M258 controllers.

Affected products

n/a · EcoStruxure Machine Expert (all versions)SoMachine, SoMachine Motion (all versions)Modicon M218 Logic Controller (all versions)Modicon M241 Logic Controller (all versions)Modicon M251 Logic Controller (all versions)Modicon M258 Logic Controller (all versions)

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://www.se.com/ww/en/download/document/SEVD-2020-105-02