Security Advisory

CVE-2020-7541

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-12-11 00:52:09

Last updated 2024-08-04 09:33:19

Assigner schneider

State PUBLISHED

Description

A CWE-425: Direct Request (Forced Browsing) vulnerability exists in the Web Server on Modicon M340, Legacy Offers Modicon Quantum and Modicon Premium and associated Communication Modules (see security notification for affected versions), that could cause disclosure of sensitive data when sending a specially crafted request to the controller over HTTP.

← Browse all CVEs View on cve.org ↗