CVE-2019-6531

Summary

An attacker could retrieve passwords from a HTTP GET request from the Kunbus PR100088 Modbus gateway versions prior to Release R02 (or Software Version 1.1.13166) if the attacker is in an MITM position.

Affected Software

VendorProductVersion RangeStatus
KunbusPR100088 Modbus gatewayAll versions prior to Release R02 (or Software Version 1.1.13166)affected

Weaknesses

  • CWE-598: INFORMATION EXPOSURE THROUGH QUERY STRINGS IN GET REQUEST CWE-598

ADP Enrichment

CVE Program Container

Additional References

References