CVE-2019-16879 — Vulnetix

CVE-2019-16879 PUBLISHED CVSS 9.800000190734863 CRITICAL

The Synergy Systems & Solutions (SSS) HUSKY RTU 6049-E70, with firmware Versions 5.0 and prior, has a Missing Authentication for Critical Function (CWE-306) vulnerability. The affected product does not require authentication for TELNET access, which may allow an attacker to change configuration or perform other malicious activities.

EPSS 0.18% · 39.1th percentile

Risk Scores

CVSS v3.1

9.800000190734863

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS Score

0.18%

39.1th percentile

Affected Products

Vendor	Product	Versions
mysyngeryss	husky_rtu_6049-e70_firmware	0
n/a	n/a	n/a

Timeline

Apr 7, 2020 CVE Published
Apr 14, 2021 EPSS Score
Jun 22, 2021 EPSS Score
Aug 24, 2021 EPSS Score
Oct 25, 2021 EPSS Score
Jan 6, 2022 EPSS Score
Feb 4, 2022 EPSS Score
Feb 27, 2022 EPSS Score
Apr 1, 2022 EPSS Score
May 1, 2022 EPSS Score
Jul 2, 2022 EPSS Score
Sep 4, 2022 EPSS Score

References

https://www.us-cert.gov/ics/advisories/icsa-20-042-01 url
https://nvd.nist.gov/vuln/detail/CVE-2019-16879 advisory

Open in Interactive Console →