CVE-2020-7533

Name of the Vulnerable Software and Affected Versions Modicon M340 versions (affected versions not specified) Modicon Quantum versions (affected versions not specified) Modicon Premium Legacy versions (affected versions not specified) Communication Modules versions (affected versions not specified)

Description A Credentials Management issue exists which could cause the execution of commands on the web server without authentication when sending specially crafted HTTP requests. This could allow a remote attacker to execute arbitrary commands using HTTP requests.

Recommendations For Modicon M340, check the security notification for specific version information and follow the recommended update or patch instructions. For Modicon Quantum, check the security notification for specific version information and follow the recommended update or patch instructions. For Modicon Premium Legacy, check the security notification for specific version information and follow the recommended update or patch instructions. For Communication Modules, check the security notification for specific version information and follow the recommended update or patch instructions. As a temporary workaround, consider restricting access to the web server to minimize the risk of exploitation.