VDE-2020-005
Last update
22.05.2025 15:03
Published at
10.03.2020 14:17
Vendor(s)
Beckhoff Automation GmbH & Co. KG
External ID
VDE-2020-005
CSAF Document
Summary
The coupler's function could be inhibited by an attack.
Impact
The coupler's function could be inhibited by a denial of service attack. The coupler will not recover after the attack has stopped.
A reboot of the device recovers the operation.
Affected Product(s)
| Model no. | Product name | Affected versions |
|---|---|---|
| BK9000 vers:all/* | BK9000 vers:all/* |
Vulnerabilities
Expand / Collapse all
Published
22.09.2025 14:58
Severity
Weakness
Uncontrolled Resource Consumption (CWE-400)
Summary
A Denial-of-Service vulnerability exists in BECKHOFF Ethernet TCP/IP Bus Coupler BK9000. After an attack has occurred, the device's functionality can be restored by rebooting.
References
Mitigation
Beckhoff will not change this behaviour.
Customers should configure a perimeter firewall to block traffic from untrusted networks to the device.
Revision History
| Version | Date | Summary |
|---|---|---|
| 1 | 10.03.2020 14:17 | Initial revision. |
| 2 | 16.01.2025 11:00 | Fix: list of branches, typo in references url |
| 3 | 11.04.2025 09:00 | Fix: version range |
| 4 | 22.05.2025 15:03 | Fix: quotation mark |