CVE-2020-2814 Festo Didactic SE CVE debrief

Who should care

OT/ICS operators, Festo MES PC administrators, and teams responsible for any deployment that uses the affected MySQL Server/InnoDB versions in the advisory context. Because the impact is a server hang or crash, production environments that depend on database availability should treat this as operationally relevant even though the attack requires high privileges.

Technical summary

The advisory text states that Oracle MySQL Server InnoDB is affected on supported versions 5.6.47 and prior, 5.7.28 and prior, and 8.0.18 and prior. The CVSS vector is AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H (4.9). In the supplied CSAF record, successful exploitation can cause a hang or frequently repeatable crash of MySQL Server, yielding complete denial of service. The remediation entry says Festo Didactic released Factory Control Panel as a replacement for XAMPP on MES PCs and directs customers to technical support for the current version.

Defensive priority

Medium. The issue is network-reachable and can stop a service, but it requires high privileges and is not described as enabling code execution or confidentiality/integrity compromise.

Recommended defensive actions

• Determine whether any MES PC systems in your environment correspond to the supplied Festo advisory and its product IDs.
• Obtain the current Factory Control Panel release from Festo Didactic technical support at [email protected], as directed in the advisory.
• Plan replacement of XAMPP with the vendor-provided Factory Control Panel on affected MES PCs.
• Restrict and review high-privilege access to the affected MySQL service, since the advisory requires a high-privileged network attacker.
• Limit unnecessary network paths and protocols to the MySQL service on these systems, consistent with the advisory’s attack description and CISA ICS recommended practices.
• After remediation, verify service stability and account for the advisory’s stated restart requirement for the vulnerable component.

Evidence notes

The source corpus explicitly ties CVE-2020-2814 to a Festo Didactic SE MES PC CSAF advisory while describing the underlying issue as an Oracle MySQL Server InnoDB vulnerability. It states affected versions 5.6.47 and prior, 5.7.28 and prior, and 8.0.18 and prior, with impact limited to hang or repeatable crash of MySQL Server. The supplied CVSS vector is AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H with a score of 4.9. The remediation entry names Factory Control Panel as a replacement for XAMPP on MES PCs and points to vendor support for the current version. No KEV entry is provided in the supplied data.

Official resources