CVE-2020-12501

MITRE NVD CVE.ORG Print: PDF PDF

Summary

CVECVE-2020-12501
StatePUBLIC
Assigner[email protected]
Source PriorityCVE Program / NVD first with legacy fallback
Published2020-10-15 19:15:00 UTC
Updated2024-01-17 15:05:00 UTC
DescriptionImproper Authorization vulnerability of Pepperl+Fuchs P+F Comtrol RocketLinx ES7510-XT, ES8509-XT, ES8510-XT, ES9528-XTv2, ES7506, ES7510, ES7528, ES8508, ES8508F, ES8510, ES8510-XTE, ES9528/ES9528-XT (all versions) use undocumented accounts.

Risk And Classification

Problem Types: CWE-798

NVD Known Affected Configurations (CPE 2.3)

TypeVendorProductVersionUpdateEditionLanguage
Hardware Korenix Jetnet4510 - All All All
Operating System Korenix Jetnet4510 Firmware - All All All
Hardware Korenix Jetnet4706 - All All All
Hardware Korenix Jetnet4706f - All All All
Operating System Korenix Jetnet4706f Firmware - All All All
Operating System Korenix Jetnet4706 Firmware - All All All
Hardware Korenix Jetnet5010 - All All All
Operating System Korenix Jetnet5010 Firmware - All All All
Hardware Korenix Jetnet5310 - All All All
Operating System Korenix Jetnet5310 Firmware - All All All
Hardware Korenix Jetnet5428g-20sfp - All All All
Operating System Korenix Jetnet5428g-20sfp Firmware - All All All
Hardware Korenix Jetnet5810g - All All All
Operating System Korenix Jetnet5810g Firmware - All All All
Hardware Korenix Jetnet6095 - All All All
Operating System Korenix Jetnet6095 Firmware - All All All
Hardware Korenix Jetnet 4510 - All All All
Hardware Korenix Jetnet 4706 - All All All
Hardware Korenix Jetnet 4706f - All All All
Hardware Korenix Jetnet 5010 - All All All
Hardware Korenix Jetnet 5310 - All All All
Hardware Korenix Jetnet 5428g-20sfp - All All All
Hardware Korenix Jetnet 5810g - All All All
Hardware Korenix Jetnet 6095 - All All All
Hardware Korenix Jetwave 2212g - All All All
Operating System Korenix Jetwave 2212g Firmware - All All All
Hardware Korenix Jetwave 2212s - All All All
Operating System Korenix Jetwave 2212s Firmware - All All All
Hardware Korenix Jetwave 2212x - All All All
Operating System Korenix Jetwave 2212x Firmware - All All All
Hardware Korenix Jetwave 2311 - All All All
Operating System Korenix Jetwave 2311 Firmware - All All All
Hardware Korenix Jetwave 3220 - All All All
Operating System Korenix Jetwave 3220 Firmware - All All All
Hardware Pepperl-fuchs Es7506 - All All All
Hardware Pepperl-fuchs Es7506 - All All All
Operating System Pepperl-fuchs Es7506 Firmware All All All All
Operating System Pepperl-fuchs Es7506 Firmware All All All All
Hardware Pepperl-fuchs Es7510 - All All All
Hardware Pepperl-fuchs Es7510 - All All All
Hardware Pepperl-fuchs Es7510-xt - All All All
Hardware Pepperl-fuchs Es7510-xt - All All All
Operating System Pepperl-fuchs Es7510-xt Firmware All All All All
Operating System Pepperl-fuchs Es7510-xt Firmware All All All All
Operating System Pepperl-fuchs Es7510 Firmware All All All All
Operating System Pepperl-fuchs Es7510 Firmware All All All All
Hardware Pepperl-fuchs Es7528 - All All All
Hardware Pepperl-fuchs Es7528 - All All All
Operating System Pepperl-fuchs Es7528 Firmware All All All All
Operating System Pepperl-fuchs Es7528 Firmware All All All All
Hardware Pepperl-fuchs Es8508 - All All All
Hardware Pepperl-fuchs Es8508 - All All All
Hardware Pepperl-fuchs Es8508f - All All All
Hardware Pepperl-fuchs Es8508f - All All All
Operating System Pepperl-fuchs Es8508f Firmware All All All All
Operating System Pepperl-fuchs Es8508f Firmware All All All All
Operating System Pepperl-fuchs Es8508 Firmware All All All All
Operating System Pepperl-fuchs Es8508 Firmware All All All All
Hardware Pepperl-fuchs Es8509-xt - All All All
Hardware Pepperl-fuchs Es8509-xt - All All All
Operating System Pepperl-fuchs Es8509-xt Firmware All All All All
Operating System Pepperl-fuchs Es8509-xt Firmware All All All All
Hardware Pepperl-fuchs Es8510 - All All All
Hardware Pepperl-fuchs Es8510 - All All All
Hardware Pepperl-fuchs Es8510-xt - All All All
Hardware Pepperl-fuchs Es8510-xt - All All All
Hardware Pepperl-fuchs Es8510-xte - All All All
Hardware Pepperl-fuchs Es8510-xte - All All All
Operating System Pepperl-fuchs Es8510-xte Firmware All All All All
Operating System Pepperl-fuchs Es8510-xte Firmware All All All All
Operating System Pepperl-fuchs Es8510-xt Firmware All All All All
Operating System Pepperl-fuchs Es8510-xt Firmware All All All All
Operating System Pepperl-fuchs Es8510 Firmware All All All All
Operating System Pepperl-fuchs Es8510 Firmware All All All All
Hardware Pepperl-fuchs Es9528 - All All All
Hardware Pepperl-fuchs Es9528 - All All All
Hardware Pepperl-fuchs Es9528-xt - All All All
Hardware Pepperl-fuchs Es9528-xt - All All All
Hardware Pepperl-fuchs Es9528-xtv2 - All All All
Hardware Pepperl-fuchs Es9528-xtv2 - All All All
Operating System Pepperl-fuchs Es9528-xtv2 Firmware All All All All
Operating System Pepperl-fuchs Es9528-xtv2 Firmware All All All All
Operating System Pepperl-fuchs Es9528-xt Firmware All All All All
Operating System Pepperl-fuchs Es9528-xt Firmware All All All All
Operating System Pepperl-fuchs Es9528 Firmware All All All All
Operating System Pepperl-fuchs Es9528 Firmware All All All All

References

ReferenceSourceLinkTags
PEPPERL+FUCHS: Multiple Products prone to multiple vulnerabilities in Comtrol RocketLinux (Update A) — German (Germany) CONFIRM cert.vde.com Third Party Advisory
Full Disclosure: SEC Consult SA-20220531-0 :: Backdoor account in Korenix JetPort 5601V3 FULLDISC seclists.org
Korenix CSRF / Backdoor Accounts / Command Injection / Missing Authentication ≈ Packet Storm MISC packetstormsecurity.com
Full Disclosure: SEC Consult SA-20210601-0 :: Multiple critical vulnerabilities in Korenix Technology JetNet Series FULLDISC seclists.org
Multiple Critical Vulnerabilities in Korenix Technology, Westermo and Pepperl+Fuchs products CONFIRM sec-consult.com
Korenix JetPort 5601V3 Backdoor Account ≈ Packet Storm MISC packetstormsecurity.com
Korenix Technology JetWave CSRF / Command Injection / Missing Authentication ≈ Packet Storm MISC packetstormsecurity.com
CVE Program record CVE.ORG www.cve.org canonical
NVD vulnerability detail NVD nvd.nist.gov canonical, analysis

Vendor Comments And Credit

Discovery Credit

LEGACY: T. Weber (SEC Consult Vulnerability Lab)

LEGACY: Coordinated by CERT@VDE

© CVE.report 2026 |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

CVE.report and Source URL Uptime Status status.cve.report