CVE-2019-5637 — HIGH (7.5) — White Hats Nepal

Vulnerability Description

When Beckhoff TwinCAT is configured to use the Profinet driver, a denial of service of the controller could be reached by sending a malformed UDP packet to the device. This issue affects TwinCAT 2 version 2304 (and prior) and TwinCAT 3.1 version 4204.0 (and prior).

CVSS Score

7.5

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

NONE

Integrity

NONE

Availability

HIGH

Affected Products

Vendor	Product	Versions
Beckhoff	Twincat	3.1.4022.30
Beckhoff	Twincat Cx2030	-
Beckhoff	Twincat Cx5140	-

Related Weaknesses (CWE)

CWE-369

References

https://blog.rapid7.com/2019/10/08/r7-2019-32-denial-of-service-vulnerabilities-ExploitThird Party Advisory
https://download.beckhoff.com/download/Document/product-security/Advisories/adviMitigationVendor Advisory
https://blog.rapid7.com/2019/10/08/r7-2019-32-denial-of-service-vulnerabilities-ExploitThird Party Advisory
https://download.beckhoff.com/download/Document/product-security/Advisories/adviMitigationVendor Advisory

FAQ

What is CVE-2019-5637?

CVE-2019-5637 is a vulnerability with a CVSS score of 7.5 (HIGH). When Beckhoff TwinCAT is configured to use the Profinet driver, a denial of service of the controller could be reached by sending a malformed UDP packet to the device. This issue affects TwinCAT 2 ver...

How severe is CVE-2019-5637?

CVE-2019-5637 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2019-5637?

Check the references section above for vendor advisories and patch information. Affected products include: Beckhoff Twincat, Beckhoff Twincat Cx2030, Beckhoff Twincat Cx5140.