CVE-2021-34594
6.5
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H
Summary
TwinCAT OPC UA Server in TF6100 and TS6100 in product versions before 4.3.48.0 or with TcOpcUaServer versions below 3.2.0.194 are prone to a relative path traversal that allow administrators to create or delete any files on the system.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Beckhoff Automation | TwinCAT OPC UA Server | TF6100 < 4.3.48.0 | affected |
| Beckhoff Automation | TwinCAT OPC UA Server | TS6100 < 4.3.48.0 | affected |
| Beckhoff Automation | TwinCAT OPC UA Server | TcOpcUaServer version < 3.2.0.19423 | affected |
Weaknesses
- CWE-23: CWE-23 Relative Path Traversal
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.