Heap Overflow Vulnerability in FactoryTalk Linx Version 6.11 and Prior: Remote Information Disclosure and ASLR Bypass

Heap Overflow Vulnerability in FactoryTalk Linx Version 6.11 and Prior: Remote Information Disclosure and ASLR Bypass

CVE-2020-27255 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

A heap overflow vulnerability exists within FactoryTalk Linx Version 6.11 and prior. This vulnerability could allow a remote, unauthenticated attacker to send malicious set attribute requests, which could result in the leaking of sensitive information. This information disclosure could lead to the bypass of address space layout randomization (ASLR).

Learn more about our Web Application Penetration Testing UK.