What is GHSA-qvw5-8j7m-vjcv?

GHSA-qvw5-8j7m-vjcv is a security advisory published by GitHub Security Advisories with Medium severity. A CWE-319: Cleartext Transmission of Sensitive Information vulnerability exists which could leak...

Which CVE IDs does GHSA-qvw5-8j7m-vjcv cover?

GHSA-qvw5-8j7m-vjcv covers the following CVE IDs: CVE-2020-7488. Each CVE has its own detail page on EchelonGraph Pulse with the synthesized EG score.

What is the CVSS v3 score of GHSA-qvw5-8j7m-vjcv?

GHSA-qvw5-8j7m-vjcv has a CVSS v3 base score of 7.5, published by GitHub Security Advisories.

GHSA-qvw5-8j7m-vjcvMediumCVSS 7.5

A CWE-319: Cleartext Transmission of Sensitive Information vulnerability exists which could leak...

Vendor

GitHub Security Advisories

Published

May 24, 2022

Last Modified

May 28, 2026

🔗 CVE IDs covered (1)

CVE-2020-7488 →

📋 Description

A CWE-319: Cleartext Transmission of Sensitive Information vulnerability exists which could leak sensitive information transmitted between the software and the Modicon M218, M241, M251, and M258 controllers.

🔗 References (3)

https://nvd.nist.gov/vuln/detail/CVE-2020-7488
https://www.se.com/ww/en/download/document/SEVD-2020-105-02
https://github.com/advisories/GHSA-qvw5-8j7m-vjcv