Lucene search
SiemensCVELIST:CVE-2019-13944HistoryDec 12, 2019 - 7:08 p.m.
CVE-2019-13944
2019-12-1219:08:46
CWE-23
siemens
www.cve.org
4
A vulnerability has been identified in EN100 Ethernet module DNP3 variant (All versions), EN100 Ethernet module IEC 61850 variant (All versions < V4.37), EN100 Ethernet module IEC104 variant (All versions), EN100 Ethernet module Modbus TCP variant (All versions), EN100 Ethernet module PROFINET IO variant (All versions). A vulnerability in the integrated web server of the affected devices could allow unauthorized attackers to obtain sensitive information about the device, including logs and configurations. At the time of advisory publication no public exploitation of this security vulnerability was known.
CNA Affected
[
{
"product": "EN100 Ethernet module DNP3 variant",
"vendor": "Siemens AG",
"versions": [
{
"status": "affected",
"version": "All versions"
}
]
},
{
"product": "EN100 Ethernet module IEC 61850 variant",
"vendor": "Siemens AG",
"versions": [
{
"status": "affected",
"version": "All versions < V4.37"
}
]
},
{
"product": "EN100 Ethernet module IEC104 variant",
"vendor": "Siemens AG",
"versions": [
{
"status": "affected",
"version": "All versions"
}
]
},
{
"product": "EN100 Ethernet module Modbus TCP variant",
"vendor": "Siemens AG",
"versions": [
{
"status": "affected",
"version": "All versions"
}
]
},
{
"product": "EN100 Ethernet module PROFINET IO variant",
"vendor": "Siemens AG",
"versions": [
{
"status": "affected",
"version": "All versions"
}
]
}
]Related
prion
prion
Code injection
2019-12-12 19:15:00
nessus
nessus
cve
cve
CVE-2019-13944
2019-12-12 19:15:15
nvd
nvd
CVE-2019-13944
2019-12-12 19:15:15
ics
ics
Siemens EN100 Ethernet Module (Update A)
2020-01-14 12:00:00