CVE-2020-12518
Phoenix Contact PLCnext Control Devices versions before 2021.0 LTS: An attacker can use the knowledge gained by reading the insufficiently protected sensitive information to plan further attacks.
Vexday Risk Score
13Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS 5.5EPSS 0.7%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
17 dic 2020Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
On Phoenix Contact PLCnext Control Devices versions before 2021.0 LTS an attacker can use the knowledge gained by reading the insufficiently protected sensitive information to plan further attacks.
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Productos afectados
Phoenix Contact · AXC F 1152 (1151412)Phoenix Contact · AXC F 2152 (2404267)Phoenix Contact · AXC F 2152 Starterkit (1046568)Phoenix Contact · AXC F 3152 (1069208)Phoenix Contact · PLCnext Technology Starterkit (1188165)Phoenix Contact · RFC 4072S (1051328¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →