CVE-2019-6810

Name of the Vulnerable Software and Affected Versions Modicon BMXNOR0200H (all firmware versions)

Description The issue is related to improper access control, which could allow unauthorized users to execute commands when using the IEC 60870-5-104 protocol. This could potentially enable a remote attacker to elevate their privileges.

Recommendations For all firmware versions, consider restricting access to the IEC 60870-5-104 protocol until a fix is available. As a temporary workaround, limit the execution of commands to authorized users only. At the moment, there is no information about a newer version that contains a fix for this vulnerability.