Rockwell Automation Allen-Bradley PowerMonitor Multiple Security Vulnerabilities
BID:106333
CVE-2018-19615 | CVE-2018-19616 |Info
Rockwell Automation Allen-Bradley PowerMonitor Multiple Security Vulnerabilities
| Bugtraq ID: | 106333 |
| Class: | Design Error |
| CVE: |
CVE-2018-19615 CVE-2018-19616 |
| Remote: | Yes |
| Local: | No |
| Published: | Nov 27 2018 12:00AM |
| Updated: | Feb 22 2019 01:00PM |
| Credit: | Luca.Chiou |
| Vulnerable: |
Rockwell Automation Allen-Bradley PowerMonitor 1000 1408-EM3A-ENT B |
| Not Vulnerable: | |
Discussion
Rockwell Automation Allen-Bradley PowerMonitor Multiple Security Vulnerabilities
Rockwell Automation Allen-Bradley PowerMonitor 1000 is prone to multiple security vulnerabilities.
An attacker may leverage these issues to bypass certain security restrictions, obtain sensitive information and execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site.
Rockwell Automation Allen-Bradley PowerMonitor 1000 is prone to multiple security vulnerabilities.
An attacker may leverage these issues to bypass certain security restrictions, obtain sensitive information and execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site.
Exploit / POC
Rockwell Automation Allen-Bradley PowerMonitor Multiple Security Vulnerabilities
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
Rockwell Automation Allen-Bradley PowerMonitor Multiple Security Vulnerabilities
Solution:
Currently, we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution:
Currently, we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
References
Rockwell Automation Allen-Bradley PowerMonitor Multiple Security Vulnerabilities
References:
References:
- Rockwell Automation Homepage (Rockwell Automation)
- Advisory (ICSA-19-050-04) Rockwell Automation Allen-Bradley PowerMonitor 1000 (ICS-CERT)