Vulnerability Details CVE-2011-3486
Beckhoff TwinCAT 2.11.0.2004 and earlier allows remote attackers to cause a denial of service via a crafted request to UDP port 48899, which triggers an out-of-bounds read.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.617
EPSS Ranking 98.2%
CVSS Severity
CVSS v2 Score 5.0
References
- http://aluigi.altervista.org/adv/twincat_1-adv.txt
- http://osvdb.org/75495
- http://securityreason.com/securityalert/8380
- http://www.us-cert.gov/control_systems/pdf/ICS-ALERT-11-256-06.pdf
- https://exchange.xforce.ibmcloud.com/vulnerabilities/69765
- http://aluigi.altervista.org/adv/twincat_1-adv.txt
- http://osvdb.org/75495
- http://securityreason.com/securityalert/8380
- http://www.us-cert.gov/control_systems/pdf/ICS-ALERT-11-256-06.pdf
- https://exchange.xforce.ibmcloud.com/vulnerabilities/69765
Products affected by CVE-2011-3486
-
cpe:2.3:a:beckhoff:twincat:-
-
cpe:2.3:a:beckhoff:twincat:2.0
-
cpe:2.3:a:beckhoff:twincat:2.10
-
cpe:2.3:a:beckhoff:twincat:2.11
-
cpe:2.3:a:beckhoff:twincat:2.7
-
cpe:2.3:a:beckhoff:twincat:2.8
-
cpe:2.3:a:beckhoff:twincat:2.9