CVE-2020-18329

CVSS V2 None CVSS V3 None
Description
An issue was discovered in Rehau devices that use a pCOWeb card BIOS v6.27, BOOT v5.00, web version v2.2, allows attackers to gain full unauthenticated access to the configuration and service interface.
Overview
  • CVE ID
  • CVE-2020-18329
  • Assigner
  • cve@mitre.org
  • Vulnerability Status
  • Analyzed
  • Published Version
  • 2023-01-26T21:15:18
  • Last Modified Date
  • 2023-02-03T19:48:03
Weakness Enumerations
CWE URL
CWE-281 http://cwe.mitre.org/data/definitions/281.html
CPE Configuration (Product)
CPE Vulnerable Operator Version Start Version End
cpe:2.3:a:carel:pcoweb_card_web:2.2:*:*:*:*:*:*:* 1 OR
cpe:2.3:o:carel:pcoweb_card_bios:6.27:*:*:*:*:*:*:* 1 OR
cpe:2.3:o:carel:pcoweb_card_boot:5.00:*:*:*:*:*:*:* 1 OR
References
Reference URL Reference Tags
https://github.com/cybertoxin/CVEs/blob/main/CVE_2020_18329.md
https://medium.com/@SergiuSechel/insecure-permissions-in-rehau-group-unlimited-polymer-solutions-implementation-of-carel-pcoweb-514c148ae694
Sources
Source Name Source URL
NIST https://nvd.nist.gov/vuln/detail/CVE-2020-18329
MITRE https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-18329
History
Created Old Value New Value Data Type Notes
2023-01-26 23:16:05 Added to TrackCVE
2023-01-27 15:14:35 2023-01-27T14:03:45 CVE Modified Date updated
2023-01-27 15:14:35 Received Awaiting Analysis Vulnerability Status updated
2023-02-03 13:14:33 Awaiting Analysis Undergoing Analysis Vulnerability Status updated
2023-02-03 20:17:08 2023-02-03T19:48:03 CVE Modified Date updated
2023-02-03 20:17:08 Undergoing Analysis Analyzed Vulnerability Status updated
2023-02-03 20:17:09 Weakness Enumeration new
2023-02-03 20:17:10 CPE Information updated