What is CVE-2014-5414?

CVE-2014-5414 is a critical-severity vulnerability in Beckhoff Embedded Pc Images, classified under Improper Restriction of Excessive Authentication Attempts. CVSS score: 9.1/10. Published 2016-10-05.

How severe is CVE-2014-5414?

Critical severity. CVSS v3 base score is 9.1 out of 10.

Vulnerability in Beckhoff Embedded Pc Images

CVE-2014-5414

Beckhoff Embedded PC images before 2014-10-22 and Automation Device Specification (ADS) TwinCAT components do not restrict the number of authentication attempts, which makes it easier for remote attackers to obtain access via a brute-force…

EPSS: 0.059 (90.8th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 9.1 (Critical). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N.

Affected products

Beckhoff Embedded Pc Images — versions 0
Beckhoff Embedded_pc_images
Beckhoff Twincat
Beckhoff Twincat Components Featuring Automation Device Specification (Ads) Communication — versions All

Weakness classification (CWE)

References

93349 (vdb-entry, x_refsource_BID)
ics-cert@hq.dhs.gov
ics-cert@hq.dhs.gov
ics-cert@hq.dhs.gov
ics-cert@hq.dhs.gov
ics-cert@hq.dhs.gov
af854a3a-2127-422b-91ae-364da2661108 (Third Party Advisory, US Government Resource)

Frequently asked questions

What is CVE-2014-5414?: CVE-2014-5414 is a critical-severity vulnerability in Beckhoff Embedded Pc Images, classified under Improper Restriction of Excessive Authentication Attempts. CVSS score: 9.1/10. Published 2016-10-05.
How severe is CVE-2014-5414?: Critical severity. CVSS v3 base score is 9.1 out of 10.