Vulnerabilities > Beckhoff > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-08-27 | CVE-2024-41173 | Unspecified vulnerability in Beckhoff IPC Diagnostics Package and Twincat/Bsd The IPC-Diagnostics package included in TwinCAT/BSD is vulnerable to a local authentication bypass by a low privileged attacker. | 7.8 |
| 2024-08-27 | CVE-2024-41176 | Unspecified vulnerability in Beckhoff MDP Package and Twincat/Bsd The MPD package included in TwinCAT/BSD allows an authenticated, low-privileged local attacker to induce a Denial-of-Service (DoS) condition on the daemon and execute code in the context of user “root” via a crafted HTTP request. | 7.3 |
| 2021-11-04 | CVE-2021-34594 | Path Traversal vulnerability in Beckhoff Tf6100 Firmware and Ts6100 Firmware TwinCAT OPC UA Server in TF6100 and TS6100 in product versions before 4.3.48.0 or with TcOpcUaServer versions below 3.2.0.194 are prone to a relative path traversal that allow administrators to create or delete any files on the system. | 8.5 |
| 2021-07-23 | CVE-2020-20741 | Unspecified vulnerability in Beckhoff Cx9020 6.02 Incorrect Access Control in Beckhoff Automation GmbH & Co. | 7.5 |
| 2020-03-12 | CVE-2020-9464 | Resource Exhaustion vulnerability in Beckhoff Bk9000 Firmware A Denial-of-Service vulnerability exists in BECKHOFF Ethernet TCP/IP Bus Coupler BK9000. | 7.8 |
| 2018-03-23 | CVE-2018-7502 | Improper Input Validation vulnerability in Beckhoff Twincat and Twincat C++ Kernel drivers in Beckhoff TwinCAT 3.1 Build 4022.4, TwinCAT 2.11 R3 2259, and TwinCAT 3.1 lack proper validation of user-supplied pointer values. | 7.2 |