Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Tenable Nessus
Tenable Nessusadded 2024/01/04 12:0 a.m.15 views

Festo CECX-X-C1 and CECX-X-M1 Improper Authentication (CVE-2014-0760)

The Festo CECX-X-C1 Modular Master Controller with CoDeSys and CECX- X-M1 Modular Controller with CoDeSys and SoftMotion provide an undocumented access method involving the FTP protocol, which allows remote attackers to execute arbitrary code or cause a denial of service application crash via...

9.3CVSS6.2AI score0.03425EPSS
Exploits0References2
NVD
NVDadded 2014/04/25 5:12 a.m.8 views

CVE-2014-0760

The Festo CECX-X-C1 Modular Master Controller with CoDeSys and CECX-X-M1 Modular Controller with CoDeSys and SoftMotion provide an undocumented access method involving the FTP protocol, which could allow a remote attacker to execute arbitrary code or cause a denial of service application crash vi...

9.3CVSS7.9AI score0.03425EPSS
Exploits0References2
NVD
NVDadded 2014/04/25 5:12 a.m.12 views

CVE-2014-0769

The Festo CECX-X-C1 Modular Master Controller with CoDeSys and CECX-X-M1 Modular Controller with CoDeSys and SoftMotion do not require authentication for connections to certain TCP ports, which allows remote attackers to 1 modify the configuration via a request to the debug service on port 4000 o...

9.3CVSS6.9AI score0.00558EPSS
Exploits0References2
Prion
Prionadded 2014/04/25 5:12 a.m.14 views

Authentication flaw

The Festo CECX-X-C1 Modular Master Controller with CoDeSys and CECX-X-M1 Modular Controller with CoDeSys and SoftMotion do not require authentication for connections to certain TCP ports, which allows remote attackers to 1 modify the configuration via a request to the debug service on port 4000 o...

9.3CVSS7.5AI score0.00558EPSS
Exploits0References1
CVE
CVEadded 2014/04/25 1:0 a.m.64 views

CVE-2014-0769

Vulnerability CVE-2014-0769 affects Festo CECX-X-C1 and CECX-X-M1 controllers (CoDeSys/SoftMotion). The issue is improper authentication (CWE-287): unauthenticated access to TCP ports 4000 (debug) and 4001 (log) allows remote attackers to modify configuration or delete log entries. Public advisor...

9.3CVSS7.2AI score0.00558EPSS
Exploits0References2Affected Software2
Cvelist
Cvelistadded 2014/04/25 1:0 a.m.15 views

CVE-2014-0760 Festo CECX-X-(C1/M1) Controller Improper Authentication

The Festo CECX-X-C1 Modular Master Controller with CoDeSys and CECX-X-M1 Modular Controller with CoDeSys and SoftMotion provide an undocumented access method involving the FTP protocol, which could allow a remote attacker to execute arbitrary code or cause a denial of service application crash vi...

9.3CVSS7.9AI score0.03425EPSS
Exploits0References1
Cvelist
Cvelistadded 2014/04/25 1:0 a.m.15 views

CVE-2014-0769 Festo CECX-X-(C1/M1) Controller Improper Authentication

The Festo CECX-X-C1 Modular Master Controller with CoDeSys and CECX-X-M1 Modular Controller with CoDeSys and SoftMotion do not require authentication for connections to certain TCP ports, which allows remote attackers to 1 modify the configuration via a request to the debug service on port 4000 o...

9.3CVSS6.9AI score0.00558EPSS
Exploits0References1
CVE
CVEadded 2014/04/25 1:0 a.m.55 views

CVE-2014-0760

CVE-2014-0760 affects Festo CECX-X-C1 and CECX-X-M1 controllers (CoDeSys/SoftMotion). The issue is an undocumented FTP access path that allows remote attackers to execute arbitrary code or trigger a denial of service via unspecified vectors. Public exploitation is noted in ICS-CERT advisories; mu...

9.3CVSS7.8AI score0.03425EPSS
Exploits0References2Affected Software2
Rows per page
Query Builder