CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-25191

Incorrect permissions are set by default for an API entry-point of a specific service, allowing a non-authenticated user to trigger a function that could reboot the CompactRIO (Driver versions prior to 20.5) remotely.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 47.8%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 7.8

References

https://us-cert.cisa.gov/ics/advisories/icsa-20-338-01
https://us-cert.cisa.gov/ics/advisories/icsa-20-338-01

Products affected by CVE-2020-25191

Ni » Compactrio » Version: N/A

cpe:2.3:h:ni:compactrio:-
Ni » Compactrio Firmware » Version: Any

cpe:2.3:o:ni:compactrio_firmware:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-25191

Products

Pricing

Contact Us