Vulnerability Change Records for CVE-2020-15806

Change History

Initial Analysis 7/24/2020 12:23:09 PM

Action Type Old Value New Value
Added CPE Configuration

								
							
							
						
OR
     *cpe:2.3:a:codesys:control_for_beaglebone:*:*:*:*:*:*:*:* versions up to (excluding) 3.5.16.10
     *cpe:2.3:a:codesys:control_for_empc-a\/imx6:*:*:*:*:*:*:*:* versions up to (excluding) 3.5.16.10
     *cpe:2.3:a:codesys:control_for_iot2000:*:*:*:*:*:*:*:* versions up to (excluding) 3.5.16.10
     *cpe:2.3:a:codesys:control_for_linux:*:*:*:*:*:*:*:* versions up to (excluding) 3.5.16.10
     *cpe:2.3:a:codesys:control_for_pfc100:*:*:*:*:*:*:*:* versions up to (excluding) 3.5.16.10
     *cpe:2.3:a:codesys:control_for_pfc200:*:*:*:*:*:*:*:* versions up to (excluding) 3.5.16.10
     *cpe:2.3:a:codesys:control_for_plcnext:*:*:*:*:*:*:*:* versions up to (excluding) 3.5.16.10
     *cpe:2.3:a:codesys:control_for_raspberry_pi:*:*:*:*:*:*:*:* versions up to (excluding) 3.5.16.10
     *cpe:2.3:a:codesys:control_for_wago_touch_panels_600:*:*:*:*:*:*:*:* versions up to (excluding) 3.5.16.10
     *cpe:2.3:a:codesys:control_rte:*:*:*:*:*:-:*:* versions from (including) 3.5.8.60 up to (excluding) 3.5.16.10
     *cpe:2.3:a:codesys:control_rte:*:*:*:*:*:beckhoff_cx:*:* versions from (including) 3.5.8.60 up to (excluding) 3.5.16.10
     *cpe:2.3:a:codesys:control_runtime_system_toolkit:*:*:*:*:*:*:*:* versions from (including) 3.0 up to (excluding) 3.5.16.10
     *cpe:2.3:a:codesys:control_win:*:*:*:*:*:*:*:* versions from (including) 3.5.9.80 up to (excluding) 3.5.16.10
     *cpe:2.3:a:codesys:embedded_target_visu_toolkit:*:*:*:*:*:*:*:* versions from (including) 3.0 up to (excluding) 3.5.16.10
     *cpe:2.3:a:codesys:hmi:*:*:*:*:*:*:*:* versions from (including) 3.5.10.0 up to (excluding) 3.5.16.10
     *cpe:2.3:a:codesys:remote_target_visu_toolkit:*:*:*:*:*:*:*:* versions from (including) 3.0 up to (excluding) 3.5.16.10
     *cpe:2.3:a:codesys:simulation_runtime:*:*:*:*:*:*:*:* versions from (including) 3.5.9.40 up to (excluding) 3.5.16.10
Added CVSS V2

								
							
							
						
NIST (AV:N/AC:L/Au:N/C:N/I:N/A:P)
Added CVSS V3.1

								
							
							
						
NIST AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Added CWE

								
							
							
						
NIST CWE-770
Changed Reference Type
https://customers.codesys.com/index.php?eID=dumpFile&t=f&f=13199&token=3e283c3e73fed61f7c181a7fa1169477efaf0c58&download= No Types Assigned
https://customers.codesys.com/index.php?eID=dumpFile&t=f&f=13199&token=3e283c3e73fed61f7c181a7fa1169477efaf0c58&download= Mitigation, Vendor Advisory
Changed Reference Type
https://www.codesys.com No Types Assigned
https://www.codesys.com Vendor Advisory
Changed Reference Type
https://www.tenable.com/security/research/tra-2020-46 No Types Assigned
https://www.tenable.com/security/research/tra-2020-46 Exploit, Third Party Advisory