PT-2019-14757 · Weidmueller · Weidmueller Ie-Sw-Vl05M+2

Published

2019-12-06

Updated

2022-04-01

CVE-2019-16672

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Weidmueller IE-SW-VL05M version 3.6.6 Build 16102415 Weidmueller IE-SW-VL08MT version 3.5.2 Build 16102415 Weidmueller IE-SW-PL10M version 3.3.16 Build 16102416

Description An issue was discovered where sensitive credentials data is transmitted in cleartext.

Recommendations For Weidmueller IE-SW-VL05M version 3.6.6 Build 16102415, consider implementing encryption for sensitive credentials data transmission. For Weidmueller IE-SW-VL08MT version 3.5.2 Build 16102415, consider implementing encryption for sensitive credentials data transmission. For Weidmueller IE-SW-PL10M version 3.3.16 Build 16102416, consider implementing encryption for sensitive credentials data transmission.

Fix

Insufficiently Protected Credentials

Cleartext Transmission of Sensitive Information

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-522CWE-319

Related Identifiers

CVE-2019-16672

Affected Products

Weidmueller Ie-Sw-Pl10M

Weidmueller Ie-Sw-Vl05M

Weidmueller Ie-Sw-Vl08Mt

PT-2019-14757 · Weidmueller · Weidmueller Ie-Sw-Vl05M+2

CVE-2019-16672

Weakness Enumeration

Related Identifiers

Affected Products

References · 6