CVE-2020-7559

CVE-2020-7559

Vendor N/A
Product PLC Simulator on EcoStruxureª Control Expert (now Unity Pro) (all versions)
Weakness CWE-120
Published November 19, 2020
Last update August 4, 2024

CVSS base score

What the vulnerability does

01Description

A CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability exists in PLC Simulator on EcoStruxureª Control Expert (now Unity Pro) (all versions) that could cause a crash of the PLC simulator present in EcoStruxureª Control Expert software when receiving a specially crafted request over Modbus.

Key dates

02Disclosure timeline

November 19, 2020 CVE published
August 4, 2024 Record updated