Vulnerabilities > CVE-2020-22552 - Unspecified vulnerability in Snap7 Project Snap7 1.4.1
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
HIGH Summary
The Snap7 server component in version 1.4.1, when an attacker sends a crafted packet with COTP protocol the last-data-unit flag set to No and S7 writes a var function, the Snap7 server will be crashed.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |