CVE-2020-27263

EPSS 0.13% · P32 Updated Feb 24, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2020-27263

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

KEPServerEX: v6.0 to v6.9, ThingWorx Kepware Server: v6.8 and v6.9, ThingWorx Industrial Connectivity: All versions, OPC-Aggregator: All versions, Rockwell Automation KEPServer Enterprise, GE Digital Industrial Gateway Server: v7.68.804 and v7.66, Software Toolbox TOP Server: All 6.x versions, are vulnerable to a heap-based buffer overflow. Opening a specifically crafted OPC UA message could allow an attacker to crash the server and potentially leak data.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

堆缓冲区溢出

Source: NVD (National Vulnerability Database)

Vulnerability Title

Kepware Kepserverex 缓冲区错误漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Kepware Kepserverex是美国Kepware公司的一个可与多种工业设备进行通讯的应用软件。该软件支持150多个通讯协议，支持通过单个平台为企业提供可靠实时的数据。 Kepware KEPServerEX 存在安全漏洞，本地攻击者可以溢出缓冲区，导致服务器崩溃或数据泄漏。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE
-	PTC Kepware KEPServerEX	v6.0 to v6.9	-
-	ThingWorx Kepware Server	v6.8 and v6.9	-
-	ThingWorx Industrial Connectivity	All versions	-
-	OPC-Aggregator	All versions	-
-	Rockwell Automation KEPServer Enterprise	All versions	-
-	GE Digital Industrial Gateway Server	v7.68.804	-
-	Software Toolbox TOP Server	All 6.x versions	-

II. Public POCs for CVE-2020-27263

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2020-27263

请登录查看更多情报信息。

Same Patch Batch · n/a · 2021-01-13 · 31 CVEs total

CVE-2020-9142		Huawei Emui 和 Honor Magic Ui 缓冲区错误漏洞
CVE-2020-28374		Linux kernel 路径遍历漏洞
CVE-2020-36191		JupyterHub 跨站请求伪造漏洞
CVE-2020-35686		Sound Research DCHU 代码问题漏洞
CVE-2021-3139		Open Iscsi Tcmu-runner 路径遍历漏洞
CVE-2021-3131		1c Enterprise 加密问题漏洞
CVE-2021-23899		Owasp Json-sanitizer 代码问题漏洞
CVE-2021-23900		Owasp Json-sanitizer 输入验证错误漏洞
CVE-2021-3028		Git Big Ppicture 输入验证错误漏洞
CVE-2020-35687		Phpfusion 跨站请求伪造漏洞
CVE-2020-23653		ThinkAdmin 代码问题漏洞
CVE-2020-9144		Huawei Emui 和 Honor Magic Ui 缓冲区错误漏洞
CVE-2020-27488		Loxone Miniserver 授权问题漏洞
CVE-2020-9145		华为智能手机缓冲区错误漏洞
CVE-2020-35578		Nagios XI 操作系统命令注入漏洞
CVE-2020-27265		多款 Kepware 产品缓冲区错误漏洞
CVE-2020-9143		华为智能手机授权问题漏洞
CVE-2020-9141		华为智能手机数据伪造问题漏洞
CVE-2020-9140		华为智能手机缓冲区错误漏洞
CVE-2020-9139		Huawei Emui 和 Honor Magic Ui 输入验证错误漏洞

Showing top 20 of 31 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: PTC Kepware KEPServerEX

CVE-2020-27267
Kepware Kepserverex 缓冲区错误漏洞

Same vendor: n/a

Same weakness: CWE-122

V. Comments for CVE-2020-27263

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2020-27263

I. Basic Information for CVE-2020-27263

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2020-27263

III. Intelligence Information for CVE-2020-27263

Same Patch Batch · n/a · 2021-01-13 · 31 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2020-27263

Leave a comment