CVE-2019-6859
CVE-2019-6859
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 1.3%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
22 Apr 2020Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
A CWE-798: Use of Hardcoded Credentials vulnerability exists in Modicon Controllers (All versions of the following CPUs and Communication Module product references listed in the Security Notifications), which could cause the disclosure of FTP hardcoded credentials when using the Web server of the controller on an unsecure network.
Affected products
n/a · Modicon Controllers (All versions of the following CPUs and Communication Module product references listed in the Security Notifications)Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →