PT-2021-9462 · Pepperl+Fuchs · Pepperl+Fuchs Comtrol Io-Link Master

T.Weber

·

Published

2021-01-22

·

Updated

2021-01-28

·

CVE-2020-12514

CVSS v3.1

6.6

Medium

VectorAV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Pepperl+Fuchs Comtrol IO-Link Master versions 1.5.48 and below
Description The issue is related to a NULL Pointer Dereference that can cause a Denial of Service (DoS) in the discoveryd component.
Recommendations For versions 1.5.48 and below, consider disabling the discoveryd component as a temporary workaround until a patch is available.

Fix

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-476

Related Identifiers

CVE-2020-12514

Affected Products

Pepperl+Fuchs Comtrol Io-Link Master