Vulnerabilities > CVE-2020-7568 - Unspecified vulnerability in Schneider-Electric Modicon M221 Firmware

047910
CVSS 4.3 - MEDIUM
Attack vector
ADJACENT_NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
LOW
Integrity impact
NONE
Availability impact
NONE
low complexity
schneider-electric

Summary

A CWE-200: Exposure of Sensitive Information to an Unauthorized Actor vulnerability exists in Modicon M221 (all references, all versions) that could allow non sensitive information disclosure when the attacker has captured the traffic between EcoStruxure Machine - Basic software and Modicon M221 controller.

Vulnerable Configurations

Part Description Count
OS
Schneider-Electric
1
Hardware
Schneider-Electric
1