CVE-2020-5807
Last modified
CVE-2020-5807 is a high-severity vulnerability rated 7.5/10 on the CVSS scale. An unauthenticated remote attacker can send data to RsvcHost.exe listening on TCP port 5241 to add entries in the FactoryTalk Diagnostics event log. The attacker can specify long fields in the log entry, which can cause an unhandled exception in wcscpy_s() if a local user opens FactoryTalk Diagnostics Viewer (FTDiagViewer.exe) to view the log entry. EPSS estimates a 33.84% chance of exploitation in the next 30 days.
Description
An unauthenticated remote attacker can send data to RsvcHost.exe listening on TCP port 5241 to add entries in the FactoryTalk Diagnostics event log. The attacker can specify long fields in the log entry, which can cause an unhandled exception in wcscpy_s() if a local user opens FactoryTalk Diagnostics Viewer (FTDiagViewer.exe) to view the log entry. Observed in FactoryTalk Diagnostics 6.11. All versions of FactoryTalk Diagnostics are affected.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Rockwellautomation | Factorytalk Diagnostics | <= 6.11 |
References
- https://www.tenable.com/security/research/tra-2020-71Third Party Advisory
- https://www.tenable.com/security/research/tra-2020-71Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2020-5807?
How severe is CVE-2020-5807?
How do I fix CVE-2020-5807?
Are you affected by CVE-2020-5807?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST