CVE-2014-0769
Last modified
CVE-2014-0769 is a vulnerability of currently unknown severity. The Festo CECX-X-C1 Modular Master Controller with CoDeSys and CECX-X-M1 Modular Controller with CoDeSys and SoftMotion do not require authentication for connections to certain TCP ports, which allows remote attackers to (1) modify the configuration via a request to the debug service on port 4000 or (2) delete log entries via a request to the log service on port 4001.. EPSS estimates a 2.05% chance of exploitation in the next 30 days.
Description
The Festo CECX-X-C1 Modular Master Controller with CoDeSys and CECX-X-M1 Modular Controller with CoDeSys and SoftMotion do not require authentication for connections to certain TCP ports, which allows remote attackers to (1) modify the configuration via a request to the debug service on port 4000 or (2) delete log entries via a request to the log service on port 4001.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Softmotion3d | Softmotion | All versions |
| Festo | Cecx-X-M1 Modular Controller | All versions |
| 3s-Software | Codesys Runtime System | All versions |
| Festo | Cecx-X-C1 Modular Master Controller | All versions |
References
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2014-0769?
How severe is CVE-2014-0769?
How do I fix CVE-2014-0769?
Are you affected by CVE-2014-0769?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST