2 matches found
Festo CECX-X-C1 and CECX-X-M1 Improper Authentication (CVE-2014-0769)
The Festo CECX-X-C1 Modular Master Controller with CoDeSys and CECX- X-M1 Modular Controller with CoDeSys and SoftMotion do not require authentication for connections to certain TCP ports, which allows remote attackers to 1 modify the configuration via a request to the debug service on port 4000 ...
CVE-2014-0769
Vulnerability CVE-2014-0769 affects Festo CECX-X-C1 and CECX-X-M1 controllers (CoDeSys/SoftMotion). The issue is improper authentication (CWE-287): unauthenticated access to TCP ports 4000 (debug) and 4001 (log) allows remote attackers to modify configuration or delete log entries. Public advisor...