Vulnerability Details CVE-2020-18329
An issue was discovered in Rehau devices that use a pCOWeb card BIOS v6.27, BOOT v5.00, web version v2.2, allows attackers to gain full unauthenticated access to the configuration and service interface.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 53.3%
CVSS Severity
CVSS v3 Score 7.5
References
- https://github.com/cybertoxin/CVEs/blob/main/CVE_2020_18329.md
- https://medium.com/%40SergiuSechel/insecure-permissions-in-rehau-group-unlimited-polymer-solutions-implementation-of-carel-pcoweb-514c148ae694
- https://github.com/cybertoxin/CVEs/blob/main/CVE_2020_18329.md
- https://medium.com/%40SergiuSechel/insecure-permissions-in-rehau-group-unlimited-polymer-solutions-implementation-of-carel-pcoweb-514c148ae694
Products affected by CVE-2020-18329
-
cpe:2.3:a:carel:pcoweb_card_web:2.2
-
cpe:2.3:o:carel:pcoweb_card_bios:6.27
-
cpe:2.3:o:carel:pcoweb_card_boot:5.00