CVE-2012-6069
CRITICAL
10.0
CVSS 3.1
Description
The CoDeSys Runtime Toolkit’s file transfer functionality does not
perform input validation, which allows an attacker to access files and
directories outside the intended scope. This may allow an attacker to
upload and download any file on the device. This could allow the
attacker to affect the availability, integrity, and confidentiality of
the device.
Metadata
Severity & Metrics
10.0
CRITICAL CVSS 3.1
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Affected products (6)
| Vendor | Product | Platform | Versions |
|---|---|---|---|
| 3S-Smart Software Solutions | CoDeSys | — | 3.X |
| 3S-Smart Software Solutions | CODESYS Control RTE | — | 0 < 2.3.7.17 |
| 3S-Smart Software Solutions | CODESYS Control Runtime embedded | — | 0 < 2.3.2.8 |
| 3S-Smart Software Solutions | CODESYS Control Runtime full | — | 0 < 2.4.7.40 |
| Festo | CECX-X-C1 Modular Master Controller with CoDeSys | — | All |
| Festo | CECX-X-M1 Modular Controller with CoDeSys and SoftMotion | — | All |
Weakness (CWE)
| CWE | Source | Description |
|---|---|---|
| CWE-23 | cna | CWE-23 |
CVSS scores (1)
| Score | Severity | Version | Source | Vector |
|---|---|---|---|---|
| 10.0 | CRITICAL | 3.1 | cna | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H |
References (5)
- http://www.codesys.com/news-events/press-releases/detail/article/sicherheitsluecke-in-codesys-v23-laufzeitsystem.html
- https://www.cisa.gov/news-events/ics-advisories/icsa-13-011-01
- http://www.digitalbond.com/tools/basecamp/3s-codesys/
- https://www.cisa.gov/news-events/ics-advisories/icsa-14-084-01
- https://us.codesys.com/ecosystem/security/