Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

CVE-2020-12504

🗓️ 15 Oct 2020 19:11:15Reported by CERTVDEType 
cve
 cve🔗 web.nvd.nist.gov📰️ 4 Media mentions👁 103 Views

CVE-2020-12504 Improper Authorization vulnerability in Pepperl+Fuchs P+F Comtrol RocketLinx ES7510-XT, ES8509-XT, ES8510-XT..

Show more

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Related
Detection
Affected
Refs
Social
ReporterTitlePublishedViews
Family
Cvelist		CVE-2020-12504 Pepperl+Fuchs improper authorization affects multiple Comtrol RocketLinx products
15 Oct 202018:42
cvelist
Prion		Authorization
15 Oct 202019:15
prion
NVD		CVE-2020-12504
15 Oct 202019:15
nvd
Tenable Nessus		Korenix JetNet Arbitrary Unauthenticated TFTP Actions (CVE-2020-12504)
26 Nov 202400:00
nessus
0day.today		Korenix CSRF / Backdoor Accounts / Command Injection / Missing Authentication Vulnerabilities
1 Jun 202100:00
zdt
0day.today		Korenix Technology JetWave CSRF / Command Injection / Missing Authentication Vulnerabilities
5 Feb 202200:00
zdt
Packet Storm		Korenix CSRF / Backdoor Accounts / Command Injection / Missing Authentication
1 Jun 202100:00
packetstorm
Packet Storm		Korenix Technology JetWave CSRF / Command Injection / Missing Authentication
4 Feb 202200:00
packetstorm
Nvd
Node
pepperl-fuchses7510-xt_firmwareRange<2.1.1
AND
pepperl-fuchses7510-xtMatch-
Node
pepperl-fuchses8509-xt_firmware
AND
pepperl-fuchses8509-xtMatch-
Node
pepperl-fuchses8510-xt_firmware
AND
pepperl-fuchses8510-xtMatch-
Node
pepperl-fuchses9528-xtv2_firmware
AND
pepperl-fuchses9528-xtv2Match-
Node
pepperl-fuchses7506_firmware
AND
pepperl-fuchses7506Match-
Node
pepperl-fuchses7510_firmware
AND
pepperl-fuchses7510Match-
Node
pepperl-fuchses7528_firmware
AND
pepperl-fuchses7528Match-
Node
pepperl-fuchses8508_firmware
AND
pepperl-fuchses8508Match-
Node
pepperl-fuchses8508f_firmware
AND
pepperl-fuchses8508fMatch-
Node
pepperl-fuchses8510_firmwareRange<3.1.1
AND
pepperl-fuchses8510Match-
Node
pepperl-fuchses8510-xte_firmware
AND
pepperl-fuchses8510-xteMatch-
Node
pepperl-fuchses9528_firmware
AND
pepperl-fuchses9528Match-
Node
pepperl-fuchses9528-xt_firmware
AND
pepperl-fuchses9528-xtMatch-
Node
pepperl-fuchsicrl-m-8rj45/4sfp-g-din_firmwareRange1.2.3
AND
pepperl-fuchsicrl-m-8rj45/4sfp-g-dinMatch-
Node
pepperl-fuchsicrl-m-16rj45/4cp-g-din_firmwareRange1.2.3
AND
pepperl-fuchsicrl-m-16rj45/4cp-g-dinMatch-
Node
korenixjetwave_2212s_firmwareMatch1.5
AND
korenixjetwave_2212sMatch-
Node
korenixjetwave_2212g_firmwareMatch1.4
AND
korenixjetwave_2212gMatch-
Node
korenixjetwave_2311_firmwareMatch1.2
AND
korenixjetwave_2311Match-
Node
korenixjetwave_3220_firmwareMatch1.2
AND
korenixjetwave_3220Match-
Node
korenixjetwave_3420_firmwareMatch1.1.3t
AND
korenixjetwave_3420Match-
Node
korenixjetwave_2212x_firmwareMatch1.5
AND
korenixjetwave_2212xMatch-
Node
korenixjetwave_5428g-20sfp_firmwareMatch1.0
AND
korenixjetwave_5428g-20sfpMatch-
Node
korenixjetwave_5810g_firmwareMatch1.1
AND
korenixjetwave_5810gMatch-
Node
korenixjetwave_5310_firmwareMatch1.5
AND
korenixjetwave_5310Match-
Node
korenixjetwave_5010_firmwareMatch3.1a
AND
korenixjetwave_5010Match-
Node
korenixjetwave_4706f_firmwareMatch2.3b
AND
korenixjetwave_4706fMatch-
Node
korenixjetwave_4706_firmwareMatch2.3b
AND
korenixjetwave_4706Match-
Node
korenixjetwave_4510_firmwareMatch3.0b
AND
korenixjetwave_4510Match-
Node
westermopmi-110-f2g_firmwareMatch1.5
AND
westermopmi-110-f2gMatch-
[
  {
    "product": "P+F Comtrol RocketLinx",
    "vendor": "Pepperl+Fuchs",
    "versions": [
      {
        "status": "affected",
        "version": "ES8509-XT, ES8510-XT, ES9528-XTv2, ES7506, ES7510, ES7528, ES8508, ES8508F,  ES8510-XTE, ES9528/ES9528-XT all"
      },
      {
        "lessThan": "2.1.1",
        "status": "affected",
        "version": "ES7510-XT",
        "versionType": "custom"
      },
      {
        "lessThan": "3.1.1",
        "status": "affected",
        "version": "ES8510",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "P+F Comtrol RocketLinx",
    "vendor": "Pepperl+Fuchs",
    "versions": [
      {
        "lessThanOrEqual": "1.2.3",
        "status": "affected",
        "version": "ICRL-M-8RJ45/4SFP-G-DIN",
        "versionType": "custom"
      },
      {
        "lessThanOrEqual": "1.2.3",
        "status": "affected",
        "version": "ICRL-M-16RJ45/4CP-G-DIN",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "JetNet",
    "vendor": "Korenix",
    "versions": [
      {
        "lessThanOrEqual": "V1.0",
        "status": "affected",
        "version": "5428G-20SFP",
        "versionType": "custom"
      },
      {
        "lessThanOrEqual": "V1.1",
        "status": "affected",
        "version": "5810G",
        "versionType": "custom"
      },
      {
        "lessThanOrEqual": "V2.3b",
        "status": "affected",
        "version": "4706F",
        "versionType": "custom"
      },
      {
        "lessThanOrEqual": "V3.0b",
        "status": "affected",
        "version": "4510",
        "versionType": "custom"
      },
      {
        "lessThan": "V1.6",
        "status": "affected",
        "version": "5310",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "PMI-110-F2G",
    "vendor": "Westermo",
    "versions": [
      {
        "lessThan": "V1.8",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
15 Oct 2020 19:15Current
9.6High risk
Vulners AI Score9.6
CVSS27.5
CVSS39.8
EPSS0.01467
CWE-912
cve-2020-12504improper authorizationpepperl+fuchsp+fcomtrol rocketlinxes7510-xtes8509-xtes8510-xtsecurity vulnerability
103
.json
Report