Lucene search
ABBCVELIST:CVE-2020-11637HistoryOct 15, 2020 - 3:08 p.m.
CVE-2020-11637 Automation Runtime TFTP Service DoS Vulnerability
2020-10-1515:08:14
CWE-401
ABB
www.cve.org
6
cve-2020-11637
b&r automation runtime
tftp service
dos vulnerability
memory leak
CVSS3
5.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L
EPSS
0.001
Percentile
44.5%
A memory leak in the TFTP service in B&R Automation Runtime versions <N4.26, <N4.34, <F4.45, <E4.53, <D4.63, <A4.73 and prior could allow an unauthenticated attacker with network access to cause a denial of service (DoS) condition.
CNA Affected
[
{
"product": "Automation Runtime",
"vendor": "B&R",
"versions": [
{
"lessThanOrEqual": "4.1x",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
},
{
"lessThan": "N4.26",
"status": "affected",
"version": "4.2x",
"versionType": "custom"
},
{
"lessThan": "N4.34",
"status": "affected",
"version": "4.3x",
"versionType": "custom"
},
{
"lessThan": "F4.45",
"status": "affected",
"version": "4.4x",
"versionType": "custom"
},
{
"lessThan": "E4.53",
"status": "affected",
"version": "4.5x",
"versionType": "custom"
},
{
"lessThan": "D4.63",
"status": "affected",
"version": "4.6x",
"versionType": "custom"
},
{
"lessThan": "A4.73",
"status": "affected",
"version": "4.7x",
"versionType": "custom"
}
]
}
]Related
nvd
nvd
CVE-2020-11637
2020-10-15 16:15:11
CVE-2020-10178
2020-04-17 18:15:11
prion
prion
Race condition
2020-10-15 16:15:00
Design/Logic Flaw
2020-04-17 18:15:00
cve
cve
CVE-2020-11637
2020-10-15 16:15:11
CVE-2020-10178
2020-04-17 18:15:11
CVSS3
5.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L
EPSS
0.001
Percentile
44.5%
Related for CVELIST:CVE-2020-11637