Lucene search

K

IcscertCVELIST:CVE-2012-6068

HistoryJan 21, 2013 - 9:00 p.m.

CVE-2012-6068

2013-01-2121:00:00

icscert

www.cve.org

7 High

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

75.7%

The Runtime Toolkit in CODESYS Runtime System 2.3.x and 2.4.x does not require authentication, which allows remote attackers to (1) execute commands via the command-line interface in the TCP listener service or (2) transfer files via requests to the TCP listener service.

References

ics-cert.us-cert.gov/advisories/ICSA-14-084-01

www.codesys.com/news-events/press-releases/detail/article/sicherheitsluecke-in-codesys-v23-laufzeitsystem.html

www.digitalbond.com/tools/basecamp/3s-codesys/

www.us-cert.gov/control_systems/pdf/ICSA-13-011-01.pdf

7 High

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

75.7%

Related for CVELIST:CVE-2012-6068

cve1 nvd1 prion1 ics2 openvas1