CVE-2020-10635

Summary

Simulation models for KUKA.Sim Pro version 3.1 are hosted by a server maintained by KUKA. When these devices request a model, the server transmits the model in plaintext.

Affected Software

VendorProductVersion RangeStatus
KUKASim Pro3.1affected

Weaknesses

  • CWE-924: CWE-924: Improper Enforcement of Message Integrity During Transmission in a Communication Channel

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References