CVE-2019-6527
Summary
| CVE | CVE-2019-6527 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2019-02-12 17:29:00 UTC |
| Updated | 2023-01-31 21:00:00 UTC |
| Description | PR100088 Modbus gateway versions prior to Release R02 (or Software Version 1.1.13166) may allow an attacker to be able to change the password for an admin user who is currently or previously logged in, provided the device has not been restarted. |
Risk And Classification
Problem Types: CWE-287
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Kunbus | Pr100088 Modbus Gateway | - | All | All | All |
| Hardware | Kunbus | Pr100088 Modbus Gateway | - | All | All | All |
| Operating System | Kunbus | Pr100088 Modbus Gateway Firmware | All | All | All | All |
| Operating System | Kunbus | Pr100088 Modbus Gateway Firmware | All | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Kunbus PR100088 Modbus Gateway (Update B) | CISA | MISC | ics-cert.us-cert.gov | Mitigation, Third Party Advisory, US Government Resource |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.