Security Advisory

CVE-2015-4051

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2015-06-08 14:00:00

Last updated 2024-08-06 06:04:02

Assigner mitre

State PUBLISHED

Description

Beckhoff IPC Diagnostics before 1.8 does not properly restrict access to functions in /config, which allows remote attackers to cause a denial of service (reboot or shutdown), create arbitrary users, or possibly have unspecified other impact via a crafted request, as demonstrated by a beckhoff.com:service:cxconfig:1#Write SOAP action to /upnpisapi.

← Browse all CVEs View on cve.org ↗