Strix
26.1K

CVE-2020-7535

HIGHCVSS 7.5/10EPSS 1.43%

Last modified

CVE-2020-7535 is a high-severity vulnerability rated 7.5/10 on the CVSS scale. A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal' Vulnerability Type) vulnerability exists in the Web Server on Modicon M340, Legacy Offers Modicon Quantum and Modicon Premium and associated Communication Modules (see security notification for affected versions), that could cause disclosure of information when sending a specially crafted request to the controller over HTTP.. EPSS estimates a 1.43% chance of exploitation in the next 30 days.

Description

A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal' Vulnerability Type) vulnerability exists in the Web Server on Modicon M340, Legacy Offers Modicon Quantum and Modicon Premium and associated Communication Modules (see security notification for affected versions), that could cause disclosure of information when sending a specially crafted request to the controller over HTTP.

Metrics

CVSS 3.1
7.5/10

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

EPSS Probability
1.43%

69.5th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
Schneider-ElectricModicon M340 Bmxp341000 Firmware< 3.30
Schneider-ElectricModicon M340 Bmxp342000 Firmware< 3.30
Schneider-ElectricModicon M340 Bmxp3420102 Firmware< 3.30
Schneider-ElectricModicon M340 Bmxp3420102cl Firmware< 3.30
Schneider-ElectricModicon M340 Bmxp342020 Firmware< 3.30
Schneider-ElectricModicon M340 Bmxp3420302 Firmware< 3.30
Schneider-ElectricModicon M340 Bmxp3420302cl Firmware< 3.30
Schneider-ElectricBmxnoe0100 Firmware< 3.4
Schneider-ElectricBmxnoe0110 Firmware< 6.6
Schneider-Electric140noe77101 Firmware< 7.3
Schneider-Electric140noe77111 Firmware< 7.3
Schneider-Electric140cpu65150 FirmwareAll versions
Schneider-Electric140cpu65160 FirmwareAll versions
Schneider-Electric140noc78000 FirmwareAll versions
Schneider-Electric140noc78100 FirmwareAll versions
Schneider-Electric140noc77101 FirmwareAll versions
Schneider-ElectricTsxp574634 FirmwareAll versions
Schneider-ElectricTsxp575634 FirmwareAll versions
Schneider-ElectricTsxp576634 FirmwareAll versions
Schneider-ElectricTsxety4103 FirmwareAll versions
Schneider-ElectricTsxety5103 FirmwareAll versions

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2020-7535?
A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal' Vulnerability Type) vulnerability exists in the Web Server on Modicon M340, Legacy Offers Modicon Quantum and Modicon Premium and associated Communication Modules (see security notification for affected versions), that could cause disclosure of information when sending a specially crafted request to the controller over HTTP.
How severe is CVE-2020-7535?
CVE-2020-7535 has a CVSS score of 7.5/10 (HIGH severity). The EPSS model estimates a 1.43% probability of exploitation in the next 30 days.
How do I fix CVE-2020-7535?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2020-7535?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST