QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2019-10926

Back to search

CVE-2019-10926

Published: Jun 12, 2019

Modified: Aug 4, 2024

PUBLISHED

Description

A vulnerability has been identified in SIMATIC MV400 family (All Versions < V7.0.6). Communication with the device is not encrypted. Data transmitted between the device and the user can be obtained by an attacker in a privileged network position. The security vulnerability can be exploited by an attacker in a privileged network position which allows eavesdropping the communication between the affected device and the user. The user must invoke a session. Successful exploitation of the vulnerability compromises confidentiality of the data transmitted.

VendorProductVersions

Siemens

SIMATIC MV400 family

affected
All Versions < V7.0.6

Weaknesses (CWE)

CWE-319

References

108725
vdb-entry
x_refsource_BID

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now