← Back to CVEs
CVE-2018-20026
HIGH7.5
Description
Improper Communication Address Filtering exists in CODESYS V3 products versions prior V3.5.14.0.
CVE Details
CVSS v3.1 Score7.5
SeverityHIGH
CVSS VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Attack VectorNETWORK
ComplexityLOW
Privileges RequiredNONE
User InteractionNONE
Published2/19/2019
Last Modified11/21/2024
Sourcenvd
Honeypot Sightings0
Affected Products
codesys:control_for_beaglebone_slcodesys:control_for_empc-a\/imx6_slcodesys:control_for_iot2000_slcodesys:control_for_linux_slcodesys:control_for_pfc100_slcodesys:control_for_pfc200_slcodesys:control_for_raspberry_pi_slcodesys:control_rte_slcodesys:control_rte_sl_\(for_beckhoff_cx\)codesys:control_runtime_toolkitcodesys:control_win_slcodesys:development_system_v3codesys:gatewaycodesys:hmi_slcodesys:opc_servercodesys:plchandlercodesys:safety_sil2codesys:targetvisu_sl
References
http://www.securityfocus.com/bid/106251(vulnerability@kaspersky.com)
https://ics-cert.kaspersky.com/advisories/klcert-advisories/2018/12/19/klcert-18-036-codesys-control-v3-improper-communication-address-filtering/(vulnerability@kaspersky.com)
https://ics-cert.us-cert.gov/advisories/ICSA-18-352-04(vulnerability@kaspersky.com)
http://www.securityfocus.com/bid/106251(af854a3a-2127-422b-91ae-364da2661108)
https://ics-cert.kaspersky.com/advisories/klcert-advisories/2018/12/19/klcert-18-036-codesys-control-v3-improper-communication-address-filtering/(af854a3a-2127-422b-91ae-364da2661108)
https://ics-cert.us-cert.gov/advisories/ICSA-18-352-04(af854a3a-2127-422b-91ae-364da2661108)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.