{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-25T11:12:20.472","vulnerabilities":[{"cve":{"id":"CVE-2014-5415","sourceIdentifier":"ics-cert@hq.dhs.gov","published":"2016-10-05T10:59:01.280","lastModified":"2026-06-17T00:11:31.267","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Beckhoff Embedded PC images before 2014-10-22 and Automation Device Specification (ADS) TwinCAT components might allow remote attackers to obtain access via the (1) Windows CE Remote Configuration Tool, (2) CE Remote Display service, or (3) TELNET service."},{"lang":"es","value":"Imágenes Beckhoff Embedded PC en versiones anteriores a 22-10-2014 y componentes Automation Device Specification (ADS) TwinCAT podrían permitir a atacantes remotos obtener acceso a través de (1) Windows CE Remote Configuration Tool, (2) servicio CE Remote Display o (3) servicio TELNET."}],"affected":[{"source":"ics-cert@hq.dhs.gov","affectedData":[{"vendor":"Beckhoff","product":"Embedded PC Images","defaultStatus":"unaffected","versions":[{"version":"0","lessThan":"October 22, 2014","versionType":"custom","status":"affected"}]},{"vendor":"Beckhoff","product":"TwinCAT Components featuring Automation Device Specification (ADS) communication","defaultStatus":"unaffected","versions":[{"version":"All","status":"affected"}]}]}],"metrics":{"cvssMetricV31":[{"source":"ics-cert@hq.dhs.gov","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N","baseScore":9.1,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":5.2}],"cvssMetricV30":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N","baseScore":9.1,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":5.2}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:C/I:C/A:N","baseScore":9.4,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"NONE"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":9.2,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"ics-cert@hq.dhs.gov","type":"Secondary","description":[{"lang":"en","value":"CWE-749"}]},{"source":"nvd@nist.gov","type":"Secondary","description":[{"lang":"en","value":"CWE-264"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:beckhoff:embedded_pc_images:-:*:*:*:*:*:*:*","matchCriteriaId":"27BB7F09-2369-4C2A-9CDB-6469E59EF7E5"},{"vulnerable":true,"criteria":"cpe:2.3:a:beckhoff:twincat:-:*:*:*:*:*:*:*","matchCriteriaId":"0324B77D-8923-4C9B-8F06-535FBC758AF7"}]}]}],"references":[{"url":"http://www.securityfocus.com/bid/93349","source":"ics-cert@hq.dhs.gov"},{"url":"https://download.beckhoff.com/download/document/product-security/Advisories/advisory-2014-001.pdf","source":"ics-cert@hq.dhs.gov"},{"url":"https://download.beckhoff.com/download/document/product-security/Advisories/advisory-2014-002.pdf","source":"ics-cert@hq.dhs.gov"},{"url":"https://download.beckhoff.com/download/document/product-security/Advisories/advisory-2014-003.pdf","source":"ics-cert@hq.dhs.gov"},{"url":"https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2016/icsa-16-278-02.json","source":"ics-cert@hq.dhs.gov"},{"url":"https://www.cisa.gov/news-events/ics-advisories/icsa-16-278-02","source":"ics-cert@hq.dhs.gov"},{"url":"http://www.securityfocus.com/bid/93349","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://ics-cert.us-cert.gov/advisories/ICSA-16-278-02","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","US Government Resource"]}]}}]}