CVE-2020-12518
published 2020-12-17CVE-2020-12518: On Phoenix Contact PLCnext Control Devices versions before 2021.0 LTS an attacker can use the knowledge gained by reading the insufficiently protected…
medium5.5CVSS 3.1
AVLACLPRLUINSUCHINAN
On Phoenix Contact PLCnext Control Devices versions before 2021.0 LTS an attacker can use the knowledge gained by reading the insufficiently protected sensitive information to plan further attacks.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| phoenix_contact | axc_f_1152 | >= unspecified < 2021.0 LTS | 2021.0 LTS |
| phoenix_contact | axc_f_2152 | >= unspecified < 2021.0 LTS | 2021.0 LTS |
| phoenix_contact | axc_f_2152_starterkit | >= unspecified < 2021.0 LTS | 2021.0 LTS |
| phoenix_contact | axc_f_3152 | >= unspecified < 2021.0 LTS | 2021.0 LTS |
| phoenix_contact | plcnext_technology_starterkit | >= unspecified < 2021.0 LTS | 2021.0 LTS |
| phoenix_contact | rfc_4072s_1051328 | >= unspecified < 2021.0 LTS | 2021.0 LTS |
| phoenixcontact | plcnext_firmware | < 2021.0 | 2021.0 |