CVE-2020-27267

14.01.2021, 00:15

KEPServerEX v6.0 to v6.9, ThingWorx Kepware Server v6.8 and v6.9, ThingWorx Industrial Connectivity (all versions), OPC-Aggregator (all versions), Rockwell Automation KEPServer Enterprise, GE Digital Industrial Gateway Server v7.68.804 and v7.66, and Software Toolbox TOP Server all 6.x versions, are vulnerable to a heap-based buffer overflow. Opening a specifically crafted OPC UA message could allow an attacker to crash the server and potentially leak data.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	9.1 CRITICAL	NETWORK	LOW	NONE	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
icscert	CNA	---				---
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 37%

Vendor	Product	Version
ge	industrial_gateway_server	7.66
ge	industrial_gateway_server	7.68.804
ptc	kepware_kepserverex	6.0
ptc	kepware_kepserverex	6.9
ptc	opc-aggregator	-
ptc	thingworx_industrial_connectivity	-
ptc	thingworx_kepware_server	6.8
ptc	thingworx_kepware_server	6.9
rockwellautomation	kepserver_enterprise	6.6.504.0
rockwellautomation	kepserver_enterprise	6.9.572.0
softwaretoolbox	top_server	6.0 ≤ 𝑥 ≤ 6.9

𝑥

= Vulnerable software versions

Common Weakness Enumeration

References

https://us-cert.cisa.gov/ics/advisories/icsa-20-352-02