CVE-2019-6850
CVE-2019-6850
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 1.7%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
29 Oct 2019Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
A CWE-200: Information Exposure vulnerability exists in Modicon M580, Modicon BMENOC 0311, and Modicon BMENOC 0321, which could cause the disclosure of sensitive information when reading specific registers with the REST API of the controller/communication module.
Affected products
n/a · Modicon M580, Modicon BMENOC 0311, Modicon BMENOC 0321Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →