Vulnerabilities > CVE-2020-7566 - Unspecified vulnerability in Schneider-Electric Modicon M221 Firmware

047910
CVSS 7.3 - HIGH
Attack vector
ADJACENT_NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
NONE
low complexity
schneider-electric

Summary

A CWE-334: Small Space of Random Values vulnerability exists in Modicon M221 (all references, all versions) that could allow the attacker to break the encryption keys when the attacker has captured the traffic between EcoStruxure Machine - Basic software and Modicon M221 controller.

Vulnerable Configurations

Part Description Count
OS
Schneider-Electric
1
Hardware
Schneider-Electric
1