CVE-2020-12500

Public Exploit
Pepperl+Fuchs improper authorization affects multiple Comtrol RocketLinx products

Description

Improper Authorization vulnerability of Pepperl+Fuchs P+F Comtrol RocketLinx ES7510-XT, ES8509-XT, ES8510-XT, ES9528-XTv2, ES7506, ES7510, ES7528, ES8508, ES8508F, ES8510, ES8510-XTE, ES9528/ES9528-XT (all versions) allows unauthenticated device administration.

Remediation

Solution:

  • An external protective measure is required. 1) Traffic from untrusted networks to the device should be blocked by a firewall. Especially traffic targeting the administration webpage. 2) Administrator and user access should be protected by a secure password and only be available to a very limited group of people.

Category

9.8
CVSS
Severity: Critical
CVSS 3.1 •
CVSS 2.0 •
EPSS 6.46% Top 10%
Third-Party Advisory packetstormsecurity.com Third-Party Advisory packetstormsecurity.com Third-Party Advisory seclists.org Third-Party Advisory vde.com Third-Party Advisory sec-consult.com
Affected: Pepperl+Fuchs P+F Comtrol RocketLinx
Affected: Korenix JetNet
Affected: Westermo PMI-110-F2G
Published at:
Updated at:

References

Link Tags
https://cert.vde.com/de-de/advisories/vde-2020-040 third party advisory
http://seclists.org/fulldisclosure/2021/Jun/0 mailing list exploit third party advisory
http://packetstormsecurity.com/files/162903/Korenix-CSRF-Backdoor-Accounts-Command-Injection-Missing-Authentication.html exploit vdb entry third party advisory
https://sec-consult.com/vulnerability-lab/advisory/multiple-critical-vulnerabilities-in-korenix-technology-westermo-pepperl-fuchs/ third party advisory
http://packetstormsecurity.com/files/165875/Korenix-Technology-JetWave-CSRF-Command-Injection-Missing-Authentication.html exploit vdb entry third party advisory

Frequently Asked Questions

What is the severity of CVE-2020-12500?
CVE-2020-12500 has been scored as a critical severity vulnerability.
How to fix CVE-2020-12500?
To fix CVE-2020-12500: An external protective measure is required. 1) Traffic from untrusted networks to the device should be blocked by a firewall. Especially traffic targeting the administration webpage. 2) Administrator and user access should be protected by a secure password and only be available to a very limited group of people.
Is CVE-2020-12500 being actively exploited in the wild?
It is possible that CVE-2020-12500 is being exploited or will be exploited in a near future based on public information. According to its EPSS score, there is a ~6% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2020-12500?
CVE-2020-12500 affects Pepperl+Fuchs P+F Comtrol RocketLinx, Korenix JetNet, Westermo PMI-110-F2G.
This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.
© 2025 Under My Watch. All Rights Reserved.