PT-2019-14755 · Weidmueller · Weidmueller Ie-Sw-Vl05M+2
Publicado
2019-12-06
·
Atualizado
2019-12-12
·
CVE-2019-16670
CVSS v3.1
9.8
Crítica
| Vetor | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Weidmueller IE-SW-VL05M version 3.6.6 Build 16102415
Weidmueller IE-SW-VL08MT version 3.5.2 Build 16102415
Weidmueller IE-SW-PL10M version 3.3.16 Build 16102416
Description
The issue concerns the authentication mechanism, which lacks brute-force prevention.
Recommendations
For Weidmueller IE-SW-VL05M version 3.6.6 Build 16102415, consider implementing additional security measures to prevent brute-force attacks until a patch is available.
For Weidmueller IE-SW-VL08MT version 3.5.2 Build 16102415, consider implementing additional security measures to prevent brute-force attacks until a patch is available.
For Weidmueller IE-SW-PL10M version 3.3.16 Build 16102416, consider implementing additional security measures to prevent brute-force attacks until a patch is available.
At the moment, there is no information about a newer version that contains a fix for this issue.
Correção
Improper Restriction of Excessive Authentication Attempts
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Weidmueller Ie-Sw-Pl10M
Weidmueller Ie-Sw-Vl05M
Weidmueller Ie-Sw-Vl08Mt