CVE-2019-10970 | xxxCVE-2019-10970 – xxx
菜单






CVE-2019-10970

九月 30, 2020 - 未分类

  1. CVE-Search
  2. CVE-2019-10970
ID CVE-2019-10970
SummaryIn Rockwell Automation PanelView 5510 (all versions manufactured before March 13, 2019 that have never been updated to v4.003, v5.002, or later), a remote, unauthenticated threat actor with access to an affected PanelView 5510 Graphic Display, upon successful exploit, may boot-up the terminal and gain root-level access to the device’s file system.
References
Vulnerable Configurations
  • cpe:2.3:o:rockwellautomation:panelview_5510_firmware:*:*:*:*:*:*:*:*
    cpe:2.3:o:rockwellautomation:panelview_5510_firmware:*:*:*:*:*:*:*:*
  • cpe:2.3:h:rockwellautomation:panelview_5510:-:*:*:*:*:*:*:*
    cpe:2.3:h:rockwellautomation:panelview_5510:-:*:*:*:*:*:*:*
CVSS
Base: 10.0 (as of 01-10-2020 – 16:43)
Impact:
Exploitability:
CWENVD-CWE-Other
CAPEC

    Access
    VectorComplexityAuthentication
    NETWORKLOWNONE
    Impact
    ConfidentialityIntegrityAvailability
    COMPLETECOMPLETECOMPLETE
    cvss-vector via4 AV:N/AC:L/Au:N/C:C/I:C/A:C
    refmap via4
    bid 109105
    misc https://www.us-cert.gov/ics/advisories/icsa-19-190-02
    Last major update01-10-2020 – 16:43
    Published11-07-2019 – 20:15
    Last modified01-10-2020 – 16:43







    Notice: Undefined variable: canUpdate in /var/www/html/wordpress/wp-content/plugins/wp-autopost-pro/wp-autopost-function.php on line 51