CVE-2020-12005
Description
FactoryTalk Linx versions 6.00, 6.10, and 6.11, RSLinx Classic v4.11.00 and prior,Connected Components Workbench: Version 12 and prior, ControlFLASH: Version 14 and later, ControlFLASH Plus: Version 1 and later, FactoryTalk Asset Centre: Version 9 and later, FactoryTalk Linx CommDTM: Version 1 and later, Studio 5000 Launcher: Version 31 and later Stud, 5000 Logix Designer software: Version 32 and prior is vulnerable. A vulnerability exists in the communication function that enables users to upload EDS files by FactoryTalk Linx. This may allow an attacker to upload a file with bad compression, consuming all the available CPU resources, leading to a denial-of-service condition.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
FactoryTalk Linx and related products allow uploading malformed EDS files, causing CPU exhaustion and denial of service.
Vulnerability
CVE-2020-12005 is an improper input validation vulnerability in the communication function of Rockwell Automation FactoryTalk Linx versions 6.00, 6.10, and 6.11, as well as in products that utilize it: Connected Components Workbench version 12 and prior, ControlFLASH version 14 and later, ControlFLASH Plus version 1 and later, FactoryTalk Asset Centre version 9 and later, FactoryTalk Linx CommDTM version 1 and later, Studio 5000 Launcher version 31 and later, and Studio 5000 Logix Designer software version 32 and prior [1]. The vulnerability allows users to upload EDS files without proper sanitization, enabling an attacker to provide a file with bad compression that consumes all available CPU resources [1].
Exploitation
An attacker with low privileges and network access can exploit this vulnerability remotely with low skill level [1]. The attacker uploads a specially crafted EDS file containing malformed compression data to the affected system. No user interaction is required [1].
Impact
Successful exploitation leads to a denial-of-service condition by exhausting CPU resources, making the system unavailable [1]. This vulnerability does not enable code execution or data compromise; however, other vulnerabilities in the same advisory (CVE-2020-11999, CVE-2020-12001) can lead to remote code execution and information disclosure [1].
Mitigation
Rockwell Automation has released updates to address this vulnerability. Users should upgrade FactoryTalk Linx to the latest version and apply vendor patches for all affected products [1]. RSLinx Classic v4.11.00 and prior were removed from the scope of this advisory in Update A [1]. No workarounds are documented; updating is the recommended mitigation.
AI Insight generated on May 27, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
4- Rockwell Automation/FactoryTalk Linxdescription
- Range: = 6.00, 6.10, 6.11
- Range: <= 12
- Range: <= 4.11.00
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- www.us-cert.gov/ics/advisories/icsa-20-163-02mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.