CVE-2020-7562

CVE-2020-7562

Vendor N/A
Product Web Server on Modicon M340, Modicon Quantum and Modicon Premium Legacy offers and their Communication Modules (see notification for details)
Weakness CWE-125
Published November 18, 2020
Last update May 29, 2026

CVSS base score

What the vulnerability does

01Description

A CWE-125: Out-of-Bounds Read vulnerability exists in the Web Server on Modicon M340, Modicon Quantum and Modicon Premium Legacy offers and their Communication Modules (see notification for details) which could cause a segmentation fault or a buffer overflow when uploading a specially crafted file on the controller over FTP.

Key dates

02Disclosure timeline

November 18, 2020 CVE published
May 29, 2026 Record updated