CVE-2018-20026

3 documents3 sources
Severity
7.5HIGH
EPSS
0.9%
top 24.08%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
19
Codesys Control FOR Beaglebone SLCodesys Control FOR Empc-a\/imx6 SLCodesys Control FOR Iot2000 SL+16 more
Timeline
PublishedFeb 19
Latest updateMay 13

Description

Improper Communication Address Filtering exists in CODESYS V3 products versions prior V3.5.14.0.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages13 packages

CVEListV5kaspersky_lab/codesys_v3_productsprior V3.5.14.0
NVDcodesys/hmi_sl3.03.5.14.0
NVDcodesys/control3.03.5.14.0
NVDcodesys/gateway3.03.5.14.0
NVDcodesys/opc_server3.03.5.14.0

🔴Vulnerability Details

2
GHSA
GHSA-mxhm-4cg3-5h2j: Improper Communication Address Filtering exists in CODESYS V3 products versions prior V32022-05-13
CVEList
CVE-2018-20026: Improper Communication Address Filtering exists in CODESYS V3 products versions prior V32019-02-19
CVE-2018-20026 (HIGH CVSS 7.5) | Improper Communication Address Filt | cvebase.io