Remote Code Execution via Beckhoff ADS Protocol in Beckhoff Embedded Windows PLCs and Twincat on Windows Engineering Stations

Remote Code Execution via Beckhoff ADS Protocol in Beckhoff Embedded Windows PLCs and Twincat on Windows Engineering Stations

CVE-2019-16871 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Beckhoff Embedded Windows PLCs through 3.1.4024.0, and Beckhoff Twincat on Windows Engineering stations, allow an attacker to achieve Remote Code Execution (as SYSTEM) via the Beckhoff ADS protocol.

Learn more about our Web Application Penetration Testing UK.