Twincat@3.1 Security Vulnerabilities and Issues — Twincat@3.1 CVE List

Lucene search

BeckhoffTwincat3.1

3 matches found

CVE•added 2019/12/19 9:15 p.m.•85 views

CVE-2019-16871

Beckhoff Embedded Windows PLCs through 3.1.4024.0, and Beckhoff Twincat on Windows Engineering stations, allow an attacker to achieve Remote Code Execution (as SYSTEM) via the Beckhoff ADS protocol.

9.8CVSS9.6AI score0.05877EPSS

CVE•added 2019/11/21 8:15 p.m.•65 views

CVE-2019-5636

When a Beckhoff TwinCAT Runtime receives a malformed UDP packet, the ADS Discovery Service shuts down. Note that the TwinCAT devices are still performing as normal. This issue affects TwinCAT 2 version 2304 (and prior) and TwinCAT 3.1 version 4204.0 (and prior).

7.5CVSS6.3AI score0.00536EPSS

CVE•added 2018/03/23 5:29 p.m.•50 views

CVE-2018-7502

Kernel drivers in Beckhoff TwinCAT 3.1 Build 4022.4, TwinCAT 2.11 R3 2259, and TwinCAT 3.1 lack proper validation of user-supplied pointer values. An attacker who is able to execute code on the target may be able to exploit this vulnerability to obtain SYSTEM privileges.

7.8CVSS7.4AI score0.00172EPSS