GCVE - cpe:2.3:a:n/a:modicon_m221,_all_references,_all

Approved changes feed: RSS · Atom

cpe:2.3:a:n/a:modicon_m221,_all_references,_all_versions:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	N/A (`22f567d3-1203-528c-8f0e-3eb9c2f6ca78`)
Product	Modicon M221, All References, All Versions (`678886b3-55ff-5cc1-bad6-368cc7fbac7e`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2020-7568`	vulnerable	2026-06-08 05:27:13.595888	Details available A CWE-200: Exposure of Sensitive Information to an Unauthorized Actor vulnerability exists in Modicon M221 (all references, all versions) that could allow non sensitive information disclosure when the attacker has captured the traffic between EcoStruxure Machine - Basic software and Modicon M221 controller. Published: 2020-11-19T21:10:33.000Z Updated: 2026-05-29T14:52:14.827Z Open on db.gcve.eu Reference links https://www.se.com/ww/en/download/document/SEVD-2020-315-05/ https://us-cert.cisa.gov/ics/advisories/icsa-20-343-04	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-7567`	vulnerable	2026-06-08 05:27:13.595293	Details available A CWE-311: Missing Encryption of Sensitive Data vulnerability exists in Modicon M221 (all references, all versions) that could allow the attacker to find the password hash when the attacker has captured the traffic between EcoStruxure Machine - Basic software and Modicon M221 controller and broke the encryption keys. Published: 2020-11-19T21:10:27.000Z Updated: 2026-05-29T14:49:08.722Z Open on db.gcve.eu Reference links https://www.se.com/ww/en/download/document/SEVD-2020-315-05/ https://us-cert.cisa.gov/ics/advisories/icsa-20-343-04	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-7566`	vulnerable	2026-06-08 05:27:13.594733	Details available A CWE-334: Small Space of Random Values vulnerability exists in Modicon M221 (all references, all versions) that could allow the attacker to break the encryption keys when the attacker has captured the traffic between EcoStruxure Machine - Basic software and Modicon M221 controller. Published: 2020-11-19T21:10:22.000Z Updated: 2026-05-29T18:27:20.594Z Open on db.gcve.eu Reference links https://www.se.com/ww/en/download/document/SEVD-2020-315-05/ https://us-cert.cisa.gov/ics/advisories/icsa-20-343-04	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-7565`	vulnerable	2026-06-08 05:27:13.593471	Details available A CWE-326: Inadequate Encryption Strength vulnerability exists in Modicon M221 (all references, all versions) that could allow the attacker to break the encryption key when the attacker has captured the traffic between EcoStruxure Machine - Basic software and Modicon M221 controller. Published: 2020-11-19T21:10:09.000Z Updated: 2026-05-29T13:28:02.233Z Open on db.gcve.eu Reference links https://www.se.com/ww/en/download/document/SEVD-2020-315-05/ https://us-cert.cisa.gov/ics/advisories/icsa-20-343-04	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

Modicon M221, All References, All Versions

PURL mappings

Vulnerability references

Contribute