Vulnerability Details : CVE-2020-25178
ISaGRAF Workbench communicates with Rockwell Automation ISaGRAF Runtime Versions 4.x and 5.x using TCP/IP. This communication protocol provides various file system operations, as well as the uploading of applications. Data is transferred over this protocol unencrypted, which could allow a remote unauthenticated attacker to upload, read, and delete files.
Products affected by CVE-2020-25178
- cpe:2.3:o:rockwellautomation:micro810_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:rockwellautomation:micro820_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:rockwellautomation:micro830_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:rockwellautomation:micro850_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:rockwellautomation:micro870_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:a:rockwellautomation:aadvance_controller:*:*:*:*:*:*:*:*
- Rockwellautomation » Isagraf Free Runtime » For Isagraf6 WorkbenchVersions up to, including, (<=) 6.6.8cpe:2.3:a:rockwellautomation:isagraf_free_runtime:*:*:*:*:*:isagraf6_workbench:*:*
- cpe:2.3:a:rockwellautomation:isagraf_runtime:*:*:*:*:*:*:*:*
- cpe:2.3:o:schneider-electric:easergy_t300_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:schneider-electric:easergy_c5_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:schneider-electric:micom_c264_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:schneider-electric:pacis_gtw_firmware:5.1:*:*:*:*:windows:*:*
- cpe:2.3:o:schneider-electric:pacis_gtw_firmware:5.2:*:*:*:*:windows:*:*
- cpe:2.3:o:schneider-electric:pacis_gtw_firmware:6.1:*:*:*:*:windows:*:*
- cpe:2.3:o:schneider-electric:pacis_gtw_firmware:6.3:*:*:*:*:linux:*:*
- cpe:2.3:o:schneider-electric:pacis_gtw_firmware:6.3:*:*:*:*:windows:*:*
- cpe:2.3:o:schneider-electric:saitel_dp_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:schneider-electric:epas_gtw_firmware:6.4:*:*:*:*:linux:*:*
- cpe:2.3:o:schneider-electric:epas_gtw_firmware:6.4:*:*:*:*:windows:*:*
- cpe:2.3:o:schneider-electric:saitel_dr_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:schneider-electric:scd2200_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:xylem:multismart_firmware:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2020-25178
0.23%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 46 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2020-25178
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
9.3
|
HIGH | AV:N/AC:M/Au:N/C:C/I:C/A:C |
8.6
|
10.0
|
NIST | |
|
7.5
|
HIGH | CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H |
1.6
|
5.9
|
ICS-CERT | |
|
8.8
|
HIGH | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
2.8
|
5.9
|
NIST |
CWE ids for CVE-2020-25178
-
The product transmits sensitive or security-critical data in cleartext in a communication channel that can be sniffed by unauthorized actors.Assigned by:
- ics-cert@hq.dhs.gov (Secondary)
- nvd@nist.gov (Primary)
References for CVE-2020-25178
-
https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-04
Vendor Advisory
-
https://www.cisa.gov/uscert/ics/advisories/icsa-20-280-01
Rockwell Automation ISaGRAF5 Runtime (Update A) | CISAThird Party Advisory;US Government Resource
-
https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-multismart-rockwell-isagraf.pdf
Vendor Advisory
-
https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1131699
Rockwell Automation - Sign InPermissions Required
Jump to