What the vulnerability does

01Description

Incorrect permissions are set by default for an API entry-point of a specific service, allowing a non-authenticated user to trigger a function that could reboot the CompactRIO (Driver versions prior to 20.5) remotely.

Key dates

02Disclosure timeline

December 11, 2020 CVE published
August 4, 2024 Record updated