← Voltar para CVEs
CVE-2018-20026
HIGH7.5
Descricao
Improper Communication Address Filtering exists in CODESYS V3 products versions prior V3.5.14.0.
Detalhes CVE
Pontuacao CVSS v3.17.5
SeveridadeHIGH
Vetor CVSSCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Vetor de ataqueNETWORK
ComplexidadeLOW
Privilegios necessariosNONE
Interacao do usuarioNONE
Publicado2/19/2019
Ultima modificacao11/21/2024
Fontenvd
Avistamentos honeypot0
Produtos afetados
codesys:control_for_beaglebone_slcodesys:control_for_empc-a\/imx6_slcodesys:control_for_iot2000_slcodesys:control_for_linux_slcodesys:control_for_pfc100_slcodesys:control_for_pfc200_slcodesys:control_for_raspberry_pi_slcodesys:control_rte_slcodesys:control_rte_sl_\(for_beckhoff_cx\)codesys:control_runtime_toolkitcodesys:control_win_slcodesys:development_system_v3codesys:gatewaycodesys:hmi_slcodesys:opc_servercodesys:plchandlercodesys:safety_sil2codesys:targetvisu_sl
Referencias
http://www.securityfocus.com/bid/106251(vulnerability@kaspersky.com)
https://ics-cert.kaspersky.com/advisories/klcert-advisories/2018/12/19/klcert-18-036-codesys-control-v3-improper-communication-address-filtering/(vulnerability@kaspersky.com)
https://ics-cert.us-cert.gov/advisories/ICSA-18-352-04(vulnerability@kaspersky.com)
http://www.securityfocus.com/bid/106251(af854a3a-2127-422b-91ae-364da2661108)
https://ics-cert.kaspersky.com/advisories/klcert-advisories/2018/12/19/klcert-18-036-codesys-control-v3-improper-communication-address-filtering/(af854a3a-2127-422b-91ae-364da2661108)
https://ics-cert.us-cert.gov/advisories/ICSA-18-352-04(af854a3a-2127-422b-91ae-364da2661108)
Correlacoes IOC
Sem correlacoes registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.