CVE-2019-5636

Description

When a Beckhoff TwinCAT Runtime receives a malformed UDP packet, the ADS Discovery Service shuts down. Note that the TwinCAT devices are still performing as normal. This issue affects TwinCAT 2 version 2304 (and prior) and TwinCAT 3.1 version 4204.0 (and prior).

CVSS breakdown

CVSS 3.1

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

Low

Affected products

Beckhoff / TwinCAT 22304 – 2304
Beckhoff / TwinCAT 3.14204.0 – 4204.0

References

VENDOR_ADVISORYhttps://download.beckhoff.com/download/Document/product-security/Advisories/advisory-2019-004.pdf
MISChttps://blog.rapid7.com/2019/10/08/r7-2019-32-denial-of-service-vulnerabilities-in-beckhoff-twincat-plc-environment-fixed/