cbcvebase.
CVE-2020-12493
published 2020-05-29

CVE-2020-12493: An open port used for debugging in SWARCOs CPU LS4000 Series with versions starting with G4... grants root access to the device without access control via…

PriorityP263critical10CVSS 3.1
AVNACLPRNUINSCCHIHAH
EPSS
1.40%
69.2th percentile
An open port used for debugging in SWARCOs CPU LS4000 Series with versions starting with G4... grants root access to the device without access control via network. A malicious user could use this vulnerability to get access to the device and disturb operations with connected devices.

Affected

2 ranges
VendorProductVersion rangeFixed in
swarcocpu_ls4000
swarcocpu_ls4000_firmware

Detection & IOCsextracted from sources · hover to see the quote

portopen debugging port (unspecified) granting root access on SWARCO CPU LS4000
  • Look for unauthenticated network connections to SWARCO CPU LS4000 devices (OS versions starting with G4) on any open debugging port — successful connection yields root-level access with no credentials required.
  • Target devices are SWARCO CPU LS4000 traffic light controllers running OS versions beginning with 'G4'; filter OT/ICS network traffic for unexpected inbound connections to these devices.
  • ·The specific port number used for debugging is not publicly disclosed in available advisories; defenders must audit all open ports on affected devices to identify the vulnerable service.
  • ·No known public exploits are confirmed; however, the trivial exploitation conditions (no auth, no interaction, network-accessible) mean the absence of a public PoC should not be relied upon as a control.
  • ·Vulnerability scope is limited to CPU LS4000 units running OS versions starting with 'G4'; devices on other firmware branches are not confirmed affected.

CVSS provenance

nvdv3.110.0CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
nvdv2.010.0CRITICALAV:N/AC:L/Au:N/C:C/I:C/A:C
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.