Vulnerability Details CVE-2014-5415
Beckhoff Embedded PC images before 2014-10-22 and Automation Device Specification (ADS) TwinCAT components might allow remote attackers to obtain access via the (1) Windows CE Remote Configuration Tool, (2) CE Remote Display service, or (3) TELNET service.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.042
EPSS Ranking 88.2%
CVSS Severity
CVSS v3 Score 9.1
CVSS v2 Score 9.4
References
- http://www.securityfocus.com/bid/93349
- https://download.beckhoff.com/download/document/product-security/Advisories/advisory-2014-001.pdf
- https://download.beckhoff.com/download/document/product-security/Advisories/advisory-2014-002.pdf
- https://download.beckhoff.com/download/document/product-security/Advisories/advisory-2014-003.pdf
- https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2016/icsa-16-278-02.json
- https://www.cisa.gov/news-events/ics-advisories/icsa-16-278-02
- http://www.securityfocus.com/bid/93349
- https://ics-cert.us-cert.gov/advisories/ICSA-16-278-02
Products affected by CVE-2014-5415
-
cpe:2.3:a:beckhoff:embedded_pc_images:-
-
cpe:2.3:a:beckhoff:twincat:-