CVE-2019-6549

Summary

An attacker could retrieve plain-text credentials stored in a XML file on PR100088 Modbus gateway versions prior to Release R02 (or Software Version 1.1.13166) through FTP.

Affected Software

VendorProductVersion RangeStatus
ICS-CERTPR100088 Modbus gatewayAll versions prior to Release R02 (or Software Version 1.1.13166)affected

Weaknesses

  • CWE-312: CLEARTEXT STORAGE OF SENSITIVE INFORMATION CWE-312

ADP Enrichment

CVE Program Container

Additional References

References