CVE-2020-5807
First published: Tue Dec 29 2020(Updated: )
An unauthenticated remote attacker can send data to RsvcHost.exe listening on TCP port 5241 to add entries in the FactoryTalk Diagnostics event log. The attacker can specify long fields in the log entry, which can cause an unhandled exception in wcscpy_s() if a local user opens FactoryTalk Diagnostics Viewer (FTDiagViewer.exe) to view the log entry. Observed in FactoryTalk Diagnostics 6.11. All versions of FactoryTalk Diagnostics are affected.
Credit: vulnreport@tenable.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Rockwell Automation FactoryTalk Diagnostics | <=6.11 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2020-5807?
CVE-2020-5807 is classified as a medium severity vulnerability due to its potential to cause unhandled exceptions.
How do I fix CVE-2020-5807?
To fix CVE-2020-5807, users should apply the latest updates for Rockwell Automation FactoryTalk Diagnostics.
Who is affected by CVE-2020-5807?
CVE-2020-5807 affects users of Rockwell Automation FactoryTalk Diagnostics version 6.11 and earlier.
What is the impact of CVE-2020-5807?
The impact of CVE-2020-5807 includes potential denial of service if an attacker exploits the vulnerability.
Is authentication required to exploit CVE-2020-5807?
No, CVE-2020-5807 can be exploited by an unauthenticated remote attacker.
- agent/weakness
- agent/severity
- agent/author
- agent/type
- agent/tags
- agent/event
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/references
- agent/description
- vendor/rockwellautomation
- canonical/rockwell automation factorytalk diagnostics
- version/rockwell automation factorytalk diagnostics/6.11