CVE-2020-27488 — CRITICAL (9.8)

Q: How severe is CVE-2020-27488?

CVE-2020-27488 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.

Q: Is there a patch for CVE-2020-27488?

Check the references section above for vendor advisories and patch information. Affected products include: Loxone Miniserver Gen 1 Firmware, Loxone Miniserver Gen 1.

Vulnerability Description

Loxone Miniserver devices with firmware before 11.1 (aka 11.1.9.3) are unable to use an authentication method that is based on the "signature of the update package." Therefore, these devices (or attackers who are spoofing these devices) can continue to use an unauthenticated cloud service for an indeterminate time period (possibly forever). Once an individual device's firmware is updated, and authentication occurs once, the cloud service recategorizes the device so that authentication is subsequently always required, and spoofing cannot occur.

CVSS Score

9.8

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Loxone	Miniserver Gen 1 Firmware	< 11.1.9.3
Loxone	Miniserver Gen 1	-

Related Weaknesses (CWE)

CWE-287

References

https://iot-lab-fh-ooe.github.io/loxone_clouddns_schwachstelle/ExploitThird Party Advisory
https://iot-lab-fh-ooe.github.io/loxone_clouddns_vulnerability/ExploitThird Party Advisory
https://www.loxone.com/dede/sicherheit-cloud-dns/ProductVendor Advisory
https://www.loxone.com/enen/security-cloud-dns/Vendor Advisory
https://iot-lab-fh-ooe.github.io/loxone_clouddns_schwachstelle/ExploitThird Party Advisory
https://iot-lab-fh-ooe.github.io/loxone_clouddns_vulnerability/ExploitThird Party Advisory
https://www.loxone.com/dede/sicherheit-cloud-dns/ProductVendor Advisory
https://www.loxone.com/enen/security-cloud-dns/Vendor Advisory

FAQ

What is CVE-2020-27488?

CVE-2020-27488 is a vulnerability with a CVSS score of 9.8 (CRITICAL). Loxone Miniserver devices with firmware before 11.1 (aka 11.1.9.3) are unable to use an authentication method that is based on the "signature of the update package." Therefore, these devices (or attac...

How severe is CVE-2020-27488?

CVE-2020-27488 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.

Is there a patch for CVE-2020-27488?

Check the references section above for vendor advisories and patch information. Affected products include: Loxone Miniserver Gen 1 Firmware, Loxone Miniserver Gen 1.