VDB
ICSA-19-155-01
ICSA-19-155-01
PUBLISHED
CVSS 7.599999904632568 HIGH
Successful exploitation of these vulnerabilities could allow an attacker to decrypt passwords, bypass authentication, and deny service to the device. In addition, these vulnerabilities could interact with third-party vulnerabilities to cause other impacts to integrity, confidentiality, and availability.
Risk Scores
CVSS v3.1
7.599999904632568
CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:L
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| AXC F 2152: article number 2404267 version 1.x | ||
| AXC F 2152: article number 1046568 (Starterkit) version 1.x |
Timeline
- Jun 4, 2019 CVE Published
References
- https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2019/icsa-19-155-01.json advisory
- https://www.cisa.gov/news-events/ics-advisories/icsa-19-155-01 advisory
- https://www.cisa.gov/uscert/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf url
- https://www.cisa.gov/uscert/ics/tips/ICS-TIP-12-146-01B url
- https://www.phoenixcontact.com/online/portal/us/?uri=pxc-oc-itemdetail:pid=2404267&library=usen&pcck=P-21-14-01&tab=1&selectedCategory=ALL fix
- https://www.phoenixcontact.com/assets/downloads_ed/local_pc/web_dwl_technical_info/ah_en_industrial_security_107913_en_01.pdf fix
- https://cert.vde.com/en-us/advisories/vde-2019-009 fix