CVE-2020-25180

Rockwell Automation ISaGRAF Runtime Versions 4.x and 5.x includes the functionality of setting a password that is required to execute privileged commands. The password value passed to ISaGRAF Runtime is the result of encryption performed with a fixed key value using the tiny encryption algorithm (TEA) on an entered or saved password. A remote, unauthenticated attacker could pass their own encrypted password to the ISaGRAF 5 Runtime, which may result in information disclosure on the device.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5.3 MEDIUM
NETWORK
HIGH
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N
icscertCNA
5.3 MEDIUM
NETWORK
HIGH
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N
CVEADP
---
---
CISA-ADPADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 34%
VendorProductVersion
schneider-electriceasergy_t300_firmware
𝑥
≤ 2.7.1
schneider-electriceasergy_c5_firmware
𝑥
< 1.1.0
schneider-electricpacis_gtw_firmware
5.1
schneider-electricpacis_gtw_firmware
5.2
schneider-electricpacis_gtw_firmware
6.1
schneider-electricpacis_gtw_firmware
6.3
schneider-electricpacis_gtw_firmware
6.3
schneider-electricsaitel_dp_firmware
𝑥
≤ 11.06.21
schneider-electricepas_gtw_firmware
6.4
schneider-electricepas_gtw_firmware
6.4
schneider-electricsaitel_dr_firmware
𝑥
≤ 11.06.12
schneider-electricscd2200_firmware
𝑥
≤ 10024
rockwellautomationaadvance_controller
𝑥
≤ 1.40
rockwellautomationisagraf_free_runtime
𝑥
≤ 6.6.8
rockwellautomationisagraf_runtime
5.0 ≤
𝑥
< 6.0
rockwellautomationmicro810_firmware
-
rockwellautomationmicro820_firmware
-
rockwellautomationmicro830_firmware
-
rockwellautomationmicro850_firmware
-
rockwellautomationmicro870_firmware
-
xylemmultismart_firmware
𝑥
< 3.2.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-04
https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1131699
https://www.cisa.gov/uscert/ics/advisories/icsa-20-280-01
https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-multismart-rockwell-isagraf.pdf
https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-04
https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1131699
https://www.cisa.gov/uscert/ics/advisories/icsa-20-280-01
https://www.xylem.com/siteassets/about-xylem/cybersecurity/advisories/xylem-multismart-rockwell-isagraf.pdf