exploitDog

CVE-2019-13533

Опубликовано: 16 дек. 2019

Источник: nvd

CVSS3: 8.1

CVSS2: 6.8

EPSS Низкий

Описание

In Omron PLC CJ series, all versions, and Omron PLC CS series, all versions, an attacker could monitor traffic between the PLC and the controller and replay requests that could result in the opening and closing of industrial valves.

Ссылки

https://www.us-cert.gov/ics/advisories/icsa-19-346-02
Third Party Advisory
US Government Resource
https://www.us-cert.gov/ics/advisories/icsa-19-346-02
Third Party Advisory
US Government Resource

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:omron:plc_cj_firmware:*:*:*:*:*:*:*:*

cpe:2.3:o:omron:plc_cs_firmware:*:*:*:*:*:*:*:*

EPSS

Процентиль: 51%

0.00276

Низкий

8.1 High

CVSS3

6.8 Medium

CVSS2

Дефекты

CWE-294

CWE-294

Связанные уязвимости

GHSA-rp7w-4xxf-cq5w

github

больше 3 лет назад

In Omron PLC CJ series, all versions, and Omron PLC CS series, all versions, an attacker could monitor traffic between the PLC and the controller and replay requests that could result in the opening and closing of industrial valves.

EPSS

Процентиль: 51%

0.00276

Низкий

8.1 High

CVSS3

6.8 Medium

CVSS2

Дефекты

CWE-294

CWE-294