CVE-2020-25176 CRITICAL

CVE-2020-25176: Rockwell Automation ISaGRAF5 Runtime Relative Path Traversal

Vendor Rockwell Automation

Product ISaGRAF Runtime

Weakness CWE-23

Published March 18, 2022

Last update April 16, 2025

View on NVD All CVEs

CVSS base score

9.1/10

Attack vector Network

Attack complexity Low

Privileges required High

User interaction None

Confidentiality High

Integrity High

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

What the vulnerability does

01Description

Some commands used by the Rockwell Automation ISaGRAF Runtime Versions 4.x and 5.x eXchange Layer (IXL) protocol perform various file operations in the file system. Since the parameter pointing to the file name is not checked for reserved characters, it is possible for a remote, unauthenticated attacker to traverse an application’s directory, which could lead to remote code execution.

Key dates

02Disclosure timeline

March 18, 2022 CVE published

April 16, 2025 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2020-25176

Related vulnerabilities

Identifiers

CVE CVE-2020-25176

CWE CWE-23

CVSS 9.1 / CRITICAL

Affected versions

Vendor Rockwell Automation

Product ISaGRAF Runtime

Affected 4.x

Vendor Rockwell Automation

Product ISaGRAF Runtime

Affected 5.x

CVE-2020-25176: Rockwell Automation ISaGRAF5 Runtime Relative Path Traversal

01Description

02Disclosure timeline

03References

04Related CVE