How severe is CVE-2019-6821?

CVE-2019-6821 has a CVSS v3 score of 6.5 (MEDIUM).

CVE-2019-6821

6.5MEDIUM

CWE-330: Use of Insufficiently Random Values vulnerability, which could cause the hijacking of the TCP connection when using Ethernet communication in Modicon M580 firmware versions prior to V2.30, an

게시됨: 5/22/2019업데이트됨: 11/21/2024

설명

CWE-330: Use of Insufficiently Random Values vulnerability, which could cause the hijacking of the TCP connection when using Ethernet communication in Modicon M580 firmware versions prior to V2.30, and all firmware versions of Modicon M340, Modicon Premium, Modicon Quantum.

AI 분석AI 기반

영향받는 제품

schneider-electricmodicon_m580_firmware

schneider-electricmodicon_m580

schneider-electricmodicon_m340_firmware

schneider-electricmodicon_m340

schneider-electricmodicon_quantum_firmware

schneider-electricmodicon_quantum

schneider-electricmodicon_premium_firmware

schneider-electricmodicon_premium

참조

http://www.securityfocus.com/bid/108366
Third Party AdvisoryVDB Entry
https://ics-cert.us-cert.gov/advisories/ICSA-19-136-01
Third Party AdvisoryUS Government Resource
https://www.schneider-electric.com/en/download/document/SEVD-2019-134-03/
PatchVendor Advisory
http://www.securityfocus.com/bid/108366
Third Party AdvisoryVDB Entry
https://ics-cert.us-cert.gov/advisories/ICSA-19-136-01
Third Party AdvisoryUS Government Resource
https://www.schneider-electric.com/en/download/document/SEVD-2019-134-03/
PatchVendor Advisory