CVE-2020-12069: CODESYS V3 prone to Inadequate Password Hashing
First published: Mon Dec 26 2022(Updated: )
In CODESYS V3 products in all versions prior V3.5.16.0 containing the CmpUserMgr, the CODESYS Control runtime system stores the online communication passwords using a weak hashing algorithm. This can be used by a local attacker with low privileges to gain full control of the device.
Credit: cve@mitre.org info@cert.vde.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Pilz PMC | >=3.0.0<3.5.17 | |
| CODESYS Control for Beaglebone SL | <3.5.16.0 | |
| CODESYS Control for empc-a/imx6 | <3.5.16.0 | |
| CODESYS Control for IoT2000 | <3.5.16.0 | |
| CODESYS Control for Linux | <3.5.16.0 | |
| WAGO PFC 100 | <3.5.16.0 | |
| WAGO PFC200 | <3.5.16.0 | |
| CODESYS Control for PLCnext | <3.5.16.0 | |
| CODESYS Control for Raspberry Pi SL | <3.5.16.0 | |
| CODESYS Control RTE | <3.5.16.0 | |
| CODESYS Control Runtime System Toolkit | <3.5.16.0 | |
| CODESYS Control V3 | <3.5.16.0 | |
| CODESYS HMI | <3.5.16.0 | |
| CODESYS Simulation Runtime | <3.5.16.0 | |
| All of | ||
| Any of | ||
| Festo Controller CECC-D Firmware | =2.3.8.0 | |
| Festo Controller CECC-D Firmware | =2.3.8.1 | |
| Festo Controller Cecc-d Firmware | ||
| All of | ||
| Any of | ||
| Festo Controller CECC-LK | =2.3.8.0 | |
| Festo Controller CECC-LK | =2.3.8.1 | |
| Festo Controller Cecc-lk Firmware | ||
| All of | ||
| Any of | ||
| Festo Controller Cecc-s Firmware | =2.3.8.0 | |
| Festo Controller Cecc-s Firmware | =2.3.8.1 | |
| Festo Controller Cecc-s Firmware | ||
| All of | ||
| WAGO 750-8217 firmware | ||
| WAGO 750-8217 firmware | ||
| All of | ||
| WAGO 750-8216 firmware | <03.06.19\(18\) | |
| WAGO 750-8216/040-000 | ||
| All of | ||
| WAGO 750-8215 firmware | <03.06.19\(18\) | |
| WAGO 750-8215 firmware | ||
| All of | ||
| WAGO 750-8214 firmware | <03.06.19\(18\) | |
| WAGO 750-8214 firmware | ||
| All of | ||
| WAGO 750-8213/040-010 firmware | <03.06.19\(18\) | |
| WAGO 750-8213/040-010 | ||
| All of | ||
| WAGO 750-8212/025-002 firmware | <03.06.19\(18\) | |
| Cisco 8212 | ||
| All of | ||
| WAGO 750-8211/040-001 firmware | <03.06.19\(18\) | |
| WAGO 750-8211/040-000 | ||
| All of | ||
| WAGO 750-8210/040-000 firmware | <03.06.19\(18\) | |
| WAGO 750-8210 firmware | ||
| All of | ||
| WAGO 750-8207 firmware | <03.06.19\(18\) | |
| WAGO 750-8207/025-000 | ||
| All of | ||
| WAGO 750-8206 firmware | <03.06.19\(18\) | |
| WAGO 750-xxx series firmware | ||
| All of | ||
| WAGO 750-8204 firmware | <03.06.19\(18\) | |
| WAGO 750-8204/025-000 | ||
| All of | ||
| WAGO Ethernet Firmware | <03.06.19\(18\) | |
| WAGO 750-8203 firmware | ||
| All of | ||
| WAGO 750-8202/025-002 Firmware | <03.06.19\(18\) | |
| WAGO 750-8202 Firmware | ||
| All of | ||
| WAGO Ethernet Firmware | <03.06.19\(18\) | |
| WAGO 750-8102 firmware | ||
| All of | ||
| WAGO 750-8101 firmware | <03.06.19\(18\) | |
| WAGO 750-8101 firmware | ||
| All of | ||
| WAGO 750-8100 firmware | <03.06.19\(18\) | |
| WAGO 750-8100 firmware | ||
| All of | ||
| WAGO 762-4201/8000-001 firmware | <03.06.19\(18\) | |
| WAGO 762-4201/8000-001 | ||
| All of | ||
| WAGO 762-4202/8000-001 firmware | <03.06.19\(18\) | |
| WAGO 762-4202/8000-001 | ||
| All of | ||
| WAGO 762-4203/8000-001 firmware | <03.06.19\(18\) | |
| WAGO 762-4203/8000-001 | ||
| All of | ||
| WAGO 762-4204/8000-001 firmware | <03.06.19\(18\) | |
| WAGO 762-4204/8000-001 | ||
| All of | ||
| WAGO 762-4205/8000-001 firmware | <03.06.19\(18\) | |
| WAGO 762-4205/8000-001 | ||
| All of | ||
| WAGO 762-4205/8000-002 firmware | <03.06.19\(18\) | |
| WAGO 762-4205/8000-002 | ||
| All of | ||
| WAGO 762-4206/8000-001 firmware | <03.06.19\(18\) | |
| WAGO 762-4206/8000-001 | ||
| All of | ||
| WAGO 762-4206/8000-002 firmware | <03.06.19\(18\) | |
| WAGO 762-4206/8000-002 | ||
| All of | ||
| WAGO 762-4301/8000-002 firmware | <03.06.19\(18\) | |
| WAGO 762-4301/8000-002 | ||
| All of | ||
| WAGO 762-4302/8000-002 firmware | <03.06.19\(18\) | |
| WAGO 762-4302/8000-002 | ||
| All of | ||
| WAGO 762-4303/8000-002 firmware | <03.06.19\(18\) | |
| WAGO 762-4303/8000-002 | ||
| All of | ||
| WAGO 762-4304/8000-002 firmware | <03.06.19\(18\) | |
| WAGO 762-4304/8000-002 | ||
| All of | ||
| WAGO 762-4305/8000-002 firmware | <03.06.19\(18\) | |
| WAGO 762-4305/8000-002 | ||
| All of | ||
| WAGO 762-4306/8000-002 firmware | <03.06.19\(18\) | |
| WAGO 762-4306/8000-002 | ||
| All of | ||
| WAGO 762-5203/8000-001 firmware | <=03.06.19\(18\) | |
| WAGO 762-5203/8000-001 | ||
| All of | ||
| WAGO 762-5204/8000-001 firmware | <03.06.19\(18\) | |
| WAGO 762-5204/8000-001 | ||
| All of | ||
| WAGO 762-5205/8000-001 firmware | <03.06.19\(18\) | |
| WAGO 762-5205/8000-001 | ||
| All of | ||
| WAGO 762-5206/8000-001 firmware | <03.06.19\(18\) | |
| WAGO 762-5206/8000-001 | ||
| All of | ||
| WAGO 762-5303/8000-002 firmware | <03.06.19\(18\) | |
| WAGO 762-5303/8000-002 | ||
| All of | ||
| WAGO 762-5304/8000-002 firmware | <03.06.19\(18\) | |
| WAGO 762-5304/8000-002 | ||
| All of | ||
| WAGO 762-5305/8000-002 firmware | <03.06.19\(18\) | |
| WAGO 762-5305/8000-002 | ||
| All of | ||
| WAGO 762-5306/8000-002 firmware | <03.06.19\(18\) | |
| WAGO 762-5306/8000-002 | ||
| All of | ||
| WAGO 762-6201/8000-001 firmware | <=03.06.19\(18\) | |
| WAGO 762-6201/8000-001 | ||
| All of | ||
| WAGO 762-6202/8000-001 firmware | <03.06.19\(18\) | |
| WAGO 762-6202/8000-001 | ||
| All of | ||
| WAGO 762-6203/8000-001 firmware | <03.06.19\(18\) | |
| WAGO 762-6203/8000-001 | ||
| All of | ||
| WAGO 762-6204/8000-001 firmware | <03.06.19\(18\) | |
| WAGO 762-6204/8000-001 | ||
| All of | ||
| WAGO 762-6301/8000-002 firmware | <03.06.19\(18\) | |
| WAGO 762-6301/8000-002 | ||
| All of | ||
| WAGO 762-6302/8000-002 firmware | <03.06.19\(18\) | |
| WAGO 762-6302/8000-002 | ||
| All of | ||
| WAGO 762-6303/8000-002 firmware | <03.06.19\(18\) | |
| WAGO 762-6303/8000-002 | ||
| All of | ||
| WAGO 762-6304/8000-002 firmware | <03.06.19\(18\) | |
| WAGO 762-6304/8000-002 | ||
| All of | ||
| Wago 752-8303/8000-0002 Firmware | <03.06.19\(18\) | |
| Wago 752-8303/8000-0002 Firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2020-12069?
The severity of CVE-2020-12069 is classified as medium due to the weak password hashing vulnerability that can be exploited by local attackers.
How do I fix CVE-2020-12069?
To fix CVE-2020-12069, you should upgrade to CODESYS versions 3.5.17.0 or later that implement stronger password hashing algorithms.
Who is affected by CVE-2020-12069?
CVE-2020-12069 affects various CODESYS V3 products and devices utilizing the CmpUserMgr across multiple versions prior to 3.5.17.0.
What is the impact of CVE-2020-12069?
The impact of CVE-2020-12069 includes the potential for local attackers to gain full control of the affected devices due to weak password storage.
Is there a workaround for CVE-2020-12069?
There is no known effective workaround for CVE-2020-12069, and upgrading the software is the recommended action.
- collector/nvd-index
- agent/references
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/title
- agent/weakness
- agent/description
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/author
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/pilz
- canonical/pilz pmc
- version/pilz pmc/3.0.0
- vendor/codesys
- canonical/codesys control for beaglebone sl
- canonical/codesys control for empc-a/imx6
- canonical/codesys control for iot2000
- canonical/codesys control for linux
- canonical/wago pfc 100
- canonical/wago pfc200
- canonical/codesys control for plcnext
- canonical/codesys control for raspberry pi sl
- canonical/codesys control rte
- canonical/codesys control runtime system toolkit
- canonical/codesys control v3
- canonical/codesys hmi
- canonical/codesys simulation runtime
- vendor/festo
- canonical/festo controller cecc-d firmware
- version/festo controller cecc-d firmware/2.3.8.0
- version/festo controller cecc-d firmware/2.3.8.1
- canonical/festo controller cecc-lk
- version/festo controller cecc-lk/2.3.8.0
- version/festo controller cecc-lk/2.3.8.1
- canonical/festo controller cecc-lk firmware
- canonical/festo controller cecc-s firmware
- version/festo controller cecc-s firmware/2.3.8.0
- version/festo controller cecc-s firmware/2.3.8.1
- vendor/wago
- canonical/wago 750-8217 firmware
- canonical/wago 750-8216 firmware
- canonical/wago 750-8216/040-000
- canonical/wago 750-8215 firmware
- canonical/wago 750-8214 firmware
- canonical/wago 750-8213/040-010 firmware
- canonical/wago 750-8213/040-010
- canonical/wago 750-8212/025-002 firmware
- canonical/cisco 8212
- canonical/wago 750-8211/040-001 firmware
- canonical/wago 750-8211/040-000
- canonical/wago 750-8210/040-000 firmware
- canonical/wago 750-8210 firmware
- canonical/wago 750-8207 firmware
- canonical/wago 750-8207/025-000
- canonical/wago 750-8206 firmware
- canonical/wago 750-xxx series firmware
- canonical/wago 750-8204 firmware
- canonical/wago 750-8204/025-000
- canonical/wago ethernet firmware
- canonical/wago 750-8203 firmware
- canonical/wago 750-8202/025-002 firmware
- canonical/wago 750-8202 firmware
- canonical/wago 750-8102 firmware
- canonical/wago 750-8101 firmware
- canonical/wago 750-8100 firmware
- canonical/wago 762-4201/8000-001 firmware
- canonical/wago 762-4201/8000-001
- canonical/wago 762-4202/8000-001 firmware
- canonical/wago 762-4202/8000-001
- canonical/wago 762-4203/8000-001 firmware
- canonical/wago 762-4203/8000-001
- canonical/wago 762-4204/8000-001 firmware
- canonical/wago 762-4204/8000-001
- canonical/wago 762-4205/8000-001 firmware
- canonical/wago 762-4205/8000-001
- canonical/wago 762-4205/8000-002 firmware
- canonical/wago 762-4205/8000-002
- canonical/wago 762-4206/8000-001 firmware
- canonical/wago 762-4206/8000-001
- canonical/wago 762-4206/8000-002 firmware
- canonical/wago 762-4206/8000-002
- canonical/wago 762-4301/8000-002 firmware
- canonical/wago 762-4301/8000-002
- canonical/wago 762-4302/8000-002 firmware
- canonical/wago 762-4302/8000-002
- canonical/wago 762-4303/8000-002 firmware
- canonical/wago 762-4303/8000-002
- canonical/wago 762-4304/8000-002 firmware
- canonical/wago 762-4304/8000-002
- canonical/wago 762-4305/8000-002 firmware
- canonical/wago 762-4305/8000-002
- canonical/wago 762-4306/8000-002 firmware
- canonical/wago 762-4306/8000-002
- canonical/wago 762-5203/8000-001 firmware
- version/wago 762-5203/8000-001 firmware/03.06.19\(18\)
- canonical/wago 762-5203/8000-001
- canonical/wago 762-5204/8000-001 firmware
- canonical/wago 762-5204/8000-001
- canonical/wago 762-5205/8000-001 firmware
- canonical/wago 762-5205/8000-001
- canonical/wago 762-5206/8000-001 firmware
- canonical/wago 762-5206/8000-001
- canonical/wago 762-5303/8000-002 firmware
- canonical/wago 762-5303/8000-002
- canonical/wago 762-5304/8000-002 firmware
- canonical/wago 762-5304/8000-002
- canonical/wago 762-5305/8000-002 firmware
- canonical/wago 762-5305/8000-002
- canonical/wago 762-5306/8000-002 firmware
- canonical/wago 762-5306/8000-002
- canonical/wago 762-6201/8000-001 firmware
- version/wago 762-6201/8000-001 firmware/03.06.19\(18\)
- canonical/wago 762-6201/8000-001
- canonical/wago 762-6202/8000-001 firmware
- canonical/wago 762-6202/8000-001
- canonical/wago 762-6203/8000-001 firmware
- canonical/wago 762-6203/8000-001
- canonical/wago 762-6204/8000-001 firmware
- canonical/wago 762-6204/8000-001
- canonical/wago 762-6301/8000-002 firmware
- canonical/wago 762-6301/8000-002
- canonical/wago 762-6302/8000-002 firmware
- canonical/wago 762-6302/8000-002
- canonical/wago 762-6303/8000-002 firmware
- canonical/wago 762-6303/8000-002
- canonical/wago 762-6304/8000-002 firmware
- canonical/wago 762-6304/8000-002
- canonical/wago 752-8303/8000-0002 firmware