CVE-2014-0760

CVE-2014-0760: Festo CECX-X-(C1/M1) Controller Improper Authentication

Vendor Festo
Product CECX-X-C1 Modular Master Controller with CoDeSys
Weakness CWE-287 · Improper authentication
Published April 25, 2014
Last update July 2, 2025

CVSS base score

What the vulnerability does

01Description

The Festo CECX-X-C1 Modular Master Controller with CoDeSys and CECX-X-M1 Modular Controller with CoDeSys and SoftMotion provide an undocumented access method involving the FTP protocol, which could allow a remote attacker to execute arbitrary code or cause a denial of service (application crash) via unspecified vectors.

Key dates

02Disclosure timeline

April 25, 2014 CVE published
July 2, 2025 Record updated