CVE-2020-28220

CVE-2020-28220

Vendor N/A
Product Modicon M258 Firmware (All versions prior to V5.0.4.11) and SoMachine/SoMachine Motion software (All versions)
Weakness CWE-119
Published December 11, 2020
Last update May 28, 2026

CVSS base score

What the vulnerability does

01Description

A CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists in Modicon M258 Firmware (All versions prior to V5.0.4.11) and SoMachine/SoMachine Motion software (All versions), that could cause a buffer overflow when the length of a file transferred to the webserver is not verified.

Key dates

02Disclosure timeline

December 11, 2020 CVE published
May 28, 2026 Record updated