CNNVD-202601-4564 Information
CNNVD ID
CNNVD-202601-4564
Related CVE
- CNNVD Published: 2026-01-27
Description (Chinese)
Beckhoff Automation Beckhoff.Device.Manager.XAR等都是美国Beckhoff Automation公司的产品。Beckhoff Automation Beckhoff.Device.Manager.XAR是一个用于远程管理和控制器配置的核心组件。Beckhoff Automation MDP software package for TwinCAT/BSD是一个硬件诊断和系统管理的核心组件。Beckhoff Automation mdp-bhf software package Beckhoff RT Linux是一个硬件信息软件包。 Beckhoff Automation多款产品存在输入验证错误漏洞,该漏洞源于整数溢出,可能导致低权限远程攻击者通过特制调用执行任意代码。以下产品受到影响:Beckhoff Automation Beckhoff.Device.Manager.XAR、Beckhoff Automation MDP software package for TwinCAT/BSD和Beckhoff Automation mdp-bhf software package Beckhoff RT Linux。
Description (English)
Beckhoff Automation Beckhoff.Device.Manager.XAR and others are products of the United States company Beckhoff Automation. Beckhoff Automation Beckhoff.Device.Manager.XAR is a core component for remote management and controller configuration. Beckhoff Automation MDP software package for TwinCAT/BSD is a core component of hardware diagnostic and system management. Beckhoff Automation mdp-bhf software package Beckhoff RT Linux is a hardware information package. Beckhoff Automation multi-products have input-validation error holes, which stem from integer spills and may lead to a low-authority remote attacker using ad hoc calls to enforce any code. The following products were affected: Beckhoff Automation Beckhoff.Device.Manager.XAR, Beckhoff Automation MDP software package for TwinCAT/BSD and Beckhoff Automation mdp-bftware package Beckhoff RT Linux.
Hazard Level
Medium
Vulnerability Type
输入验证错误
Affected Vendor
Beckhoff Automation
Published
2026-01-27
Last Modified
2026-02-24
References
https://certvde.com/de/advisories/VDE-2025-092 https://access.redhat.com/security/cve/cve-2025-41726
Patch
https://www.beckhoff.com/en-us/
Share on: