CVE-2020-12514 | SynScan

Vulnerability Database

289,871

Total vulnerabilities in the database

CVE-2020-12514

Pepperl+Fuchs Comtrol IO-Link Master in Version 1.5.48 and below is prone to a NULL Pointer Dereference that leads to a DoS in discoveryd

Published: Jan 22, 2021
Updated: Apr 13, 2023
CVE: CVE-2020-12514
Severity: Low
Exploit:

CVSS v3:

Severity: Low
Score: 4.9
AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

CVSS v2:

Severity: Low
Score: 4
AV:N/AC:L/Au:S/C:N/I:N/A:P

CWEs:

CWE-476

Affected Software
References

Software	From	Fixed in
pepperl-fuchs / io-link_master_4-eip_firmware	-	1.5.48.x
pepperl-fuchs / io-link_master_8-eip_firmware	-	1.5.48.x
pepperl-fuchs / io-link_master_8-eip-l_firmware	-	1.5.48.x
pepperl-fuchs / io-link_master_dr-8-eip_firmware	-	1.5.48.x
pepperl-fuchs / io-link_master_dr-8-eip-p_firmware	-	1.5.48.x
pepperl-fuchs / io-link_master_dr-8-eip-t_firmware	-	1.5.48.x
pepperl-fuchs / io-link_master_4-pnio_firmware	-	1.5.48.x
pepperl-fuchs / io-link_master_8-pnio_firmware	-	1.5.48.x
pepperl-fuchs / io-link_master_8-pnio-l_firmware	-	1.5.48.x
pepperl-fuchs / io-link_master_dr-8-pnio_firmware	-	1.5.48.x
pepperl-fuchs / io-link_master_dr-8-pnio-p_firmware	-	1.5.48.x
pepperl-fuchs / io-link_master_dr-8-pnio-t_firmware	-	1.5.48.x

https://cert.vde.com/en-us/advisories/vde-2020-038