Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2019-10953
HistoryApr 17, 2019 - 3:29 p.m.

CVE-2019-10953

2019-04-1715:29:00
CWE-400
CWE-770
[email protected]
web.nvd.nist.gov
6

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.001

Percentile

32.6%

JSON

ABB, Phoenix Contact, Schneider Electric, Siemens, WAGO - Programmable Logic Controllers, multiple versions. Researchers have found some controllers are susceptible to a denial-of-service attack due to a flood of network packets.

Affected configurations

Nvd
Node
abbpm554-tp-eth_firmwareMatch-
AND
abbpm554-tp-ethMatch-
Node
phoenixcontactilc_151_eth_firmwareMatch-
AND
phoenixcontactilc_151_ethMatch-
Node
schneider-electricmodicon_m221_firmwareRange<1.10.0.0
AND
schneider-electricmodicon_m221Match-
Node
siemens6es7211-1ae40-0xb0_firmwareMatch-
AND
siemens6es7211-1ae40-0xb0Match-
Node
siemens6es7314-6eh04-0ab0_firmwareMatch-
AND
siemens6es7314-6eh04-0ab0Match-
Node
siemens6ed1052-1cc01-0ba8_firmwareMatch-
AND
siemens6ed1052-1cc01-0ba8Match-
Node
wagoknx_ip_firmwareMatch-
AND
wagoknx_ipMatch-
Node
wagopfc100_firmwareMatch-
AND
wagopfc100Match-
Node
wagoethernet_firmwareMatch-
AND
wagoethernetMatch-
Node
wagobacnet\/ip_firmwareMatch-
AND
wagobacnet\/ipMatch-
VendorProductVersionCPE
abbpm554-tp-eth_firmware-cpe:2.3:o:abb:pm554-tp-eth_firmware:-:*:*:*:*:*:*:*
abbpm554-tp-eth-cpe:2.3:h:abb:pm554-tp-eth:-:*:*:*:*:*:*:*
phoenixcontactilc_151_eth_firmware-cpe:2.3:o:phoenixcontact:ilc_151_eth_firmware:-:*:*:*:*:*:*:*
phoenixcontactilc_151_eth-cpe:2.3:h:phoenixcontact:ilc_151_eth:-:*:*:*:*:*:*:*
schneider-electricmodicon_m221_firmware*cpe:2.3:o:schneider-electric:modicon_m221_firmware:*:*:*:*:*:*:*:*
schneider-electricmodicon_m221-cpe:2.3:h:schneider-electric:modicon_m221:-:*:*:*:*:*:*:*
siemens6es7211-1ae40-0xb0_firmware-cpe:2.3:o:siemens:6es7211-1ae40-0xb0_firmware:-:*:*:*:*:*:*:*
siemens6es7211-1ae40-0xb0-cpe:2.3:h:siemens:6es7211-1ae40-0xb0:-:*:*:*:*:*:*:*
siemens6es7314-6eh04-0ab0_firmware-cpe:2.3:o:siemens:6es7314-6eh04-0ab0_firmware:-:*:*:*:*:*:*:*
siemens6es7314-6eh04-0ab0-cpe:2.3:h:siemens:6es7314-6eh04-0ab0:-:*:*:*:*:*:*:*
Rows per page:
1-10 of 201

Related

ics 1
nessus 5
cvelist 1
cve 1
prion 1
ics
ics
PLC Cycle Time Influences (Update A)
2019-12-17 12:00:00
nessus
nessus
Wago PLC Cycle Time Influences Uncontrolled Resource Consumption (CVE-2019-10953)
2023-03-01 00:00:00
Abb Pm554-tp-eth Uncontrolled Resource Consumption
2019-11-08 00:00:00
Phoenix Contact PLC Cycle Time Influences Uncontrolled Resource Consumption (CVE-2019-10953)
2023-01-25 00:00:00
cvelist
cvelist
CVE-2019-10953
2019-04-17 14:02:15
cve
cve
CVE-2019-10953
2019-04-17 15:29:00
prion
prion
Code injection
2019-04-17 15:29:00

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.001

Percentile

32.6%

JSON
Related for NVD:CVE-2019-10953
ics1nessus5cvelist1cve1prion1