Vulnerability Details CVE-2020-11637
A memory leak in the TFTP service in B&R Automation Runtime versions <N4.26, <N4.34, <F4.45, <E4.53, <D4.63, <A4.73 and prior could allow an unauthenticated attacker with network access to cause a denial of service (DoS) condition.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 52.0%
CVSS Severity
CVSS v3 Score 5.8
CVSS v2 Score 5.0
References
Products affected by CVE-2020-11637
-
cpe:2.3:a:br-automation:automation_runtime:2.96
-
cpe:2.3:a:br-automation:automation_runtime:3.00
-
cpe:2.3:a:br-automation:automation_runtime:3.01
-
cpe:2.3:a:br-automation:automation_runtime:3.06
-
cpe:2.3:a:br-automation:automation_runtime:3.07
-
cpe:2.3:a:br-automation:automation_runtime:3.08
-
cpe:2.3:a:br-automation:automation_runtime:3.10
-
cpe:2.3:a:br-automation:automation_runtime:4.00
-
cpe:2.3:a:br-automation:automation_runtime:4.03
-
cpe:2.3:a:br-automation:automation_runtime:4.04
-
cpe:2.3:a:br-automation:automation_runtime:4.10
-
cpe:2.3:a:br-automation:automation_runtime:4.20
-
cpe:2.3:a:br-automation:automation_runtime:4.30
-
cpe:2.3:a:br-automation:automation_runtime:4.40
-
cpe:2.3:a:br-automation:automation_runtime:4.50
-
cpe:2.3:a:br-automation:automation_runtime:4.60
-
cpe:2.3:a:br-automation:automation_runtime:4.63
-
cpe:2.3:a:br-automation:automation_runtime:4.70
-
cpe:2.3:a:br-automation:automation_runtime:4.72
-
cpe:2.3:a:br-automation:automation_runtime:a4.73
-
cpe:2.3:a:br-automation:automation_runtime:d4.63
-
cpe:2.3:a:br-automation:automation_runtime:e4.53
-
cpe:2.3:a:br-automation:automation_runtime:f4.45
-
cpe:2.3:a:br-automation:automation_runtime:g4.93
-
cpe:2.3:a:br-automation:automation_runtime:i4.93
-
cpe:2.3:a:br-automation:automation_runtime:n4.26