CVE-2020-25191

Summary

Incorrect permissions are set by default for an API entry-point of a specific service, allowing a non-authenticated user to trigger a function that could reboot the CompactRIO (Driver versions prior to 20.5) remotely.

Affected Software

VendorProductVersion RangeStatus
n/aCompactRIODriver versions prior to 20.5affected

Weaknesses

  • CWE-732: INCORRECT PERMISSION ASSIGNMENT FOR CRITICAL RESOURCE CWE-732

ADP Enrichment

CVE Program Container

Additional References

References