PT-2020-6954 · Fanuc · Fanuc I Series Cnc

Published

2020-07-31

Updated

2021-07-21

CVE-2020-12739

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions Fanuc i Series CNC versions 0i-MD and 0i Mate-MD

Description The issue is related to an uncontrolled resource consumption in the Fanuc i Series CNC controller software. This could allow a remote attacker to cause a denial-of-service, making the affected CNC inaccessible to other devices.

Recommendations For versions 0i-MD and 0i Mate-MD, as a temporary workaround, consider restricting access to the CNC controller to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Resource Exhaustion

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-400

Related Identifiers

BDU:2024-00340

CVE-2020-12739

Affected Products

Fanuc I Series Cnc

PT-2020-6954 · Fanuc · Fanuc I Series Cnc

CVE-2020-12739

Weakness Enumeration

Related Identifiers

Affected Products

References · 6