Lucene search

ABBCVELIST:CVE-2020-11645

HistoryOct 15, 2020 - 2:59 p.m.

CVE-2020-11645 GateManager Denial of Service Vulnerability

2020-10-1514:59:08

CWE-400

ABB

www.cve.org

cve-2020-11645

b&r gatemanager

denial of service

authenticated users

availability limit

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

6.3

Confidence

High

EPSS

0.001

Percentile

35.0%

JSON

A denial of service vulnerability in B&R GateManager 4260 and 9250 versions <9.0.20262 and GateManager 8250 versions <9.2.620236042 allows authenticated users to limit availability of GateManager instances.

CNA Affected

[
  {
    "product": "GateManager",
    "vendor": "B&R",
    "versions": [
      {
        "lessThan": "9.0.20262",
        "status": "affected",
        "version": "4260",
        "versionType": "custom"
      },
      {
        "lessThan": "9.0.20262",
        "status": "affected",
        "version": "9250",
        "versionType": "custom"
      },
      {
        "lessThan": "9.2.620236042",
        "status": "affected",
        "version": "8250",
        "versionType": "custom"
      }
    ]
  }
]

References

us-cert.cisa.gov/ics/advisories/icsa-20-273-03

www.br-automation.com/downloads_br_productcatalogue/assets/1600003183751-de-original-1.0.pdf

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

6.3

Confidence

High

EPSS

0.001

Percentile

35.0%

JSON

Related for CVELIST:CVE-2020-11645