CVE-2019-6855

Incorrect Authorization vulnerability exists in EcoStruxure Control Expert (all versions prior to 14.1 Hot Fix), Unity Pro (all versions), Modicon M340 (all versions prior to V3.20) , and Modicon M580 (all versions prior to V3.10), which could cause a bypass of the authentication process between EcoStruxure Control Expert and the M340 and M580 controllers.
References
Configurations

Configuration 1

cpe:2.3:a:schneider-electric:unity_pro:*:*:*:*:*:*:*:*
cpe:2.3:a:schneider-electric:ecostruxure_control_expert:*:*:*:*:*:*:*:*
cpe:2.3:a:schneider-electric:ecostruxure_control_expert:14.1:-:*:*:*:*:*:*

Information

Published : 2020-01-06 11:15

Updated : 2022-01-31 07:33


NVD link : CVE-2019-6855

Mitre link : CVE-2019-6855

CWE