Severity
High
Analysis Summary
CVE-2020-11999
An exposed API call allows users to provide files to be processed without sanitation. This may allow an attacker to specify a filename to execute unauthorized code and modify files or data.
CVE-2020-12001
The parsing mechanism that processes certain file types does not provide input sanitation. This may allow an attacker to use specially crafted files to traverse the file system and modify or expose sensitive data or execute arbitrary code.
CVE-2020-12003
An exposed API call allows users to provide files to be processed without sanitation. This may allow an attacker to use specially crafted requests to traverse the file system and expose sensitive data on the local hard drive.
CVE-2020-12005
A vulnerability exists in the communication function that enables users to upload EDS files by FactoryTalk Linx. This may allow an attacker to upload a file with bad compression, consuming all the available CPU resources, leading to a denial-of-service condition.
Impact
- Denial of service
- Improper Input Validation
Affected Vendors
Rockwell Automation
Affected Products
- FactoryTalk Linx Software
- FactoryTalk Linx versions 6.00
- FactoryTalk Linx versions 6.10
- FactoryTalk Linx versions 6.11
Remediation
Refer to ICS advisory for the list of affected products and upgraded patches.