5 matches found
CVE-2025-41728 Beckhoff: Information leak via Beckhoff Device Manager
A low privileged remote attacker may be able to disclose confidential information from the memory of a privileged process by sending specially crafted calls to the Device Manager web service that cause an out-of-bounds read operation under certain circumstances due to ASLR and thereby potentially...
CVE-2025-41728 Beckhoff: Information leak via Beckhoff Device Manager
A low privileged remote attacker may be able to disclose confidential information from the memory of a privileged process by sending specially crafted calls to the Device Manager web service that cause an out-of-bounds read operation under certain circumstances due to ASLR and thereby potentially...
CVE-2025-41728
CVE-2025-41728 concerns Beckhoff Device Manager. Multiple sources describe a low-privilege remote attacker who can disclose confidential information from the memory of a privileged process by sending specially crafted calls to the Device Manager web service, triggering an out-of-bounds read under...
Several products of Beckhoff Automation have security vulnerabilities.
Beckhoff Automation’s Beckhoff.Device.Manager.XAR, etc., are products of the American company Beckhoff Automation. Beckhoff.Device.Manager.XAR is a core component used for remote management and controller configuration. Beckhoff Automation’s MDP software package for TwinCAT/BSD is a core componen...
Beckhoff Automation's various products have buffer error vulnerabilities
Beckhoff Automation’s Beckhoff.Device.Manager.XAR, among others, are products of the American company Beckhoff Automation. Beckhoff.Device.Manager.XAR is a core component used for remote management and controller configuration. Beckhoff Automation’s MDP software package for TwinCAT/BSD is a core...