CVE-2020-25191

EPSS 1.1%CWE-732

Incorrect permissions are set by default for an API entry-point of a specific service, allowing a non-authenticated user to trigger a function that could reboot the CompactRIO (Driver versions prior to 20.5) remotely.

Productos afectados

n/a · CompactRIO

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://us-cert.cisa.gov/ics/advisories/icsa-20-338-01