What is GHSA-8h8v-4pgc-x2vp?

GHSA-8h8v-4pgc-x2vp is a security advisory published by GitHub Security Advisories with High severity. A CWE-787: Out-of-bounds Write vulnerability exists in the Web Server on Modicon M340, Modicon...

Which CVE IDs does GHSA-8h8v-4pgc-x2vp cover?

GHSA-8h8v-4pgc-x2vp covers the following CVE IDs: CVE-2020-7563. Each CVE has its own detail page on EchelonGraph Pulse with the synthesized EG score.

What is the CVSS v3 score of GHSA-8h8v-4pgc-x2vp?

GHSA-8h8v-4pgc-x2vp has a CVSS v3 base score of 8.8, published by GitHub Security Advisories.

GHSA-8h8v-4pgc-x2vpHighCVSS 8.8

A CWE-787: Out-of-bounds Write vulnerability exists in the Web Server on Modicon M340, Modicon...

Vendor

GitHub Security Advisories

Published

May 24, 2022

Last Modified

May 29, 2026

🔗 CVE IDs covered (1)

CVE-2020-7563 →

📋 Description

A CWE-787: Out-of-bounds Write vulnerability exists in the Web Server on Modicon M340, Modicon Quantum and Modicon Premium Legacy offers and their Communication Modules (see notification for details) which could cause corruption of data, a crash, or code execution when uploading a specially crafted file on the controller over FTP.

🔗 References (3)

https://nvd.nist.gov/vuln/detail/CVE-2020-7563
https://www.se.com/ww/en/download/document/SEVD-2020-315-01
https://github.com/advisories/GHSA-8h8v-4pgc-x2vp