PT-2019-12100 · Wago · Programmable Logic Controllers

Florian Fischer

Published

2019-04-17

Updated

2026-06-04

CVE-2019-10953

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Programmable Logic Controllers versions (affected versions not specified)

Description The issue concerns a denial-of-service attack due to a flood of network packets. Researchers have found that some controllers from various manufacturers, including ABB, Phoenix Contact, Schneider Electric, Siemens, and WAGO, are susceptible to this attack.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

DoS

Allocation of Resources Without Limits

Resource Exhaustion

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-770CWE-400

Related Identifiers

CVE-2019-10953

Affected Products

Programmable Logic Controllers

PT-2019-12100 · Wago · Programmable Logic Controllers

CVE-2019-10953

Weakness Enumeration

Related Identifiers

Affected Products

References · 6