CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-12025

Rockwell Automation Logix Designer Studio 5000 Versions 32.00, 32.01, and 32.02 vulnerable to an xml external entity (XXE) vulnerability, which may allow an attacker to view hostnames or other resources from the program.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 39.9%

CVSS Severity

CVSS v3 Score 3.3

CVSS v2 Score 4.3

References

https://us-cert.cisa.gov/ics/advisories/icsa-20-191-02
https://us-cert.cisa.gov/ics/advisories/icsa-20-191-02

Products affected by CVE-2020-12025

Rockwellautomation » Studio 5000 Logix Designer » Version: 32.00

cpe:2.3:a:rockwellautomation:studio_5000_logix_designer:32.00
Rockwellautomation » Studio 5000 Logix Designer » Version: 32.01

cpe:2.3:a:rockwellautomation:studio_5000_logix_designer:32.01
Rockwellautomation » Studio 5000 Logix Designer » Version: 32.02

cpe:2.3:a:rockwellautomation:studio_5000_logix_designer:32.02

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-12025

Products

Pricing

Contact Us