• 1
  • 2 (current)

Festo: Controller CECC-S,LK,D family <= 2.3.8.1 - multiple vulnerabilities in CODESYS V3 runtime system

The Festo controller CECC product family is affected by multiple vulnerabilities in the CODESYS V3 runtime.


CVE-2019-13548: 9.8
CVE-2019-18858: 9.8
CVE-2021-33485: 9.8
CVE-2019-9010: 9.8
CVE-2018-10612: 9.8
CVE-2020-10245: 9.8
CVE-2019-9008: 8.8
CVE-2019-9013: 8.8
CVE-2022-22515: 8.1
CVE-2021-36764: 7.5
CVE-2020-15806: 7.5
CVE-2018-20025: 7.5
CVE-2018-20026: 7.5
CVE-2019-13532: 7.5
CVE-2021-36763: 7.5
CVE-2022-22517: 7.5
CVE-2022-22519: 7.5
CVE-2021-29241: 7.5
CVE-2019-5105: 7.5
CVE-2019-9012: 7.5
CVE-2019-9009: 7.5
CVE-2021-29242: 7.3
CVE-2022-22514: 7.1
CVE-2010-5250: 6.9
CVE-2022-22513: 6.5
CVE-2018-0739: 6.5
CVE-2019-13542: 6.5
CVE-2020-7052: 6.5
CVE-2020-12068: 6.5
CVE-2017-3735: 5.3
CVE-2019-9011: n/a
CVE-2020-12067: n/a
CVE-2020-12069: n/a

Festo: CECC-X-M1 - command injection vulnerabilities (Update A)

The Festo controller CECC-X-M1 product family in multiple versions are affected by a preauthentication command injection vulnerability.

Update A, 2022-07-05

Remediation has been updated. Fixed firmwares are now available.


CVE-2022-30311: 9.8
CVE-2022-30310: 9.8
CVE-2022-30309: 9.8
CVE-2022-30308: 9.8

Festo SE: Multiple vulnerabilities in Ethernet/IP Stack of SBRD-Q/SBOC-Q/SBOI-Q

The affected product families are cameras SBOC/SBOI and the Controller SBRD. The vulnerabilities are located within the Ethernet IP Stack from EIPStackGroup OpENer Ethernet/IP.


CVE-2021-27478: 7.5
CVE-2021-27482: 7.5
CVE-2021-27500: 7.5
CVE-2021-27498: 7.5
  • 1
  • 2 (current)

Feeds

By Vendor

Archive

2024
2023
2022
2021
2020
2019
2018
2017

Legend

(Scoring for CVSS 2.0,3.0+3.1)
None
No CVE available
Low
0.1 <= 3.9
Medium
4.0 <= 6.9
High
7.0 <= 8.9
Critical
9.0 <= 10.0