Vulnerability Details : CVE-2018-7502
Kernel drivers in Beckhoff TwinCAT 3.1 Build 4022.4, TwinCAT 2.11 R3 2259, and TwinCAT 3.1 lack proper validation of user-supplied pointer values. An attacker who is able to execute code on the target may be able to exploit this vulnerability to obtain SYSTEM privileges.
Vulnerability category: Input validationExecute code
Products affected by CVE-2018-7502
- cpe:2.3:a:beckhoff:twincat:3.1:*:*:*:*:*:*:*
- cpe:2.3:a:beckhoff:twincat:2.11:*:*:*:*:*:*:*
- cpe:2.3:a:beckhoff:twincat_c\+\+:3.1:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2018-7502
0.17%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 35 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2018-7502
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
7.2
|
HIGH | AV:L/AC:L/Au:N/C:C/I:C/A:C |
3.9
|
10.0
|
NIST | |
|
7.8
|
HIGH | CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
1.8
|
5.9
|
NIST |
CWE ids for CVE-2018-7502
-
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.Assigned by: nvd@nist.gov (Primary)
-
The product obtains a value from an untrusted source, converts this value to a pointer, and dereferences the resulting pointer.Assigned by: ics-cert@hq.dhs.gov (Secondary)
References for CVE-2018-7502
-
https://srcincite.io/advisories/src-2018-0007/
Source Incite
-
https://ics-cert.us-cert.gov/advisories/ICSA-18-081-02
Beckhoff TwinCAT | CISAMitigation;Third Party Advisory;US Government Resource
-
http://www.securityfocus.com/bid/103487
Beckhoff TwinCAT CVE-2018-7502 Multiple Local Privilege Escalation VulnerabilitiesThird Party Advisory;VDB Entry
-
https://download.beckhoff.com/download/Document/product-security/Advisories/advisory-2018-001.pdf
Vendor Advisory
Jump to