CVE-2020-20741

Incorrect Access Control in Beckhoff Automation GmbH & Co. KG CX9020 with firmware version CX9020_CB3011_WEC7_HPS_v602_TC31_B4016.6 allows remote attackers to bypass authentication via the "CE Remote Display Tool" as it does not close the incoming connection on the Windows CE side if the credentials are incorrect.
Configurations

Configuration 1 (hide)

cpe:2.3:h:beckhoff:cx9020:6.02:build_4016.6:*:*:*:*:*:*

History

09 Aug 2021, 17:43

Type Values Removed Values Added
CWE NVD-CWE-Other
References (MISC) https://download.beckhoff.com/download/Document/product-security/Advisories/advisory-2019-006.pdf - (MISC) https://download.beckhoff.com/download/Document/product-security/Advisories/advisory-2019-006.pdf - Mitigation, Patch, Vendor Advisory
CVSS v2 : unknown
v3 : unknown
v2 : 7.5
v3 : 9.8
CPE cpe:2.3:h:beckhoff:cx9020:6.02:build_4016.6:*:*:*:*:*:*

23 Jul 2021, 20:15

Type Values Removed Values Added
New CVE

Information

Published : 2021-07-23 20:15

Updated : 2024-02-04 21:47


NVD link : CVE-2020-20741

Mitre link : CVE-2020-20741

CVE.ORG link : CVE-2020-20741


JSON object : View

Products Affected

beckhoff

  • cx9020