CVE-2020-28212

Summary

A CWE-307: Improper Restriction of Excessive Authentication Attempts vulnerability exists in PLC Simulator on EcoStruxureª Control Expert (now Unity Pro) (all versions) that could cause unauthorized command execution when a brute force attack is done over Modbus.

Affected Software

VendorProductVersion RangeStatus
n/aPLC Simulator on EcoStruxureª Control Expert (now Unity Pro) (all versions)PLC Simulator on EcoStruxureª Control Expert (now Unity Pro) (all versions)affected

Weaknesses

  • CWE-307: CWE-307: Improper Restriction of Excessive Authentication Attempts

ADP Enrichment

CVE Program Container

Additional References

References