CVE-2019-6529

Published: Jan 7, 2020Modified: Nov 21, 2024

4.9

Vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

Exploitability: 1.2 / Impact: 3.6

Source: NVD

Description

An attacker could specially craft an FTP request that could crash the PR100088 Modbus gateway versions prior to release R02 (or Software Version 1.1.13166).

Affected (1)

Products: Kunbus: Pr100088 Modbus Gateway Firmware

Kunbus

1 product

Pr100088 Modbus Gateway Firmware

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Kunbus Pr100088 Modbus Gateway Firmware	Before 1.1.13166

Running on/with	Platform Versions
Kunbus Pr100088 Modbus Gateway	All versions

Related CWEs

CWE-20

Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (2)

https://ics-cert.us-cert.gov/advisories/ICSA-19-036-05

Source: ics-cert@hq.dhs.gov

Third Party AdvisoryUS Government Resource

https://ics-cert.us-cert.gov/advisories/ICSA-19-036-05

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryUS Government Resource

Timeline

No history available yet.