Vulnerability Details CVE-2019-6855
Incorrect Authorization vulnerability exists in EcoStruxure Control Expert (all versions prior to 14.1 Hot Fix), Unity Pro (all versions), Modicon M340 (all versions prior to V3.20) , and Modicon M580 (all versions prior to V3.10), which could cause a bypass of the authentication process between EcoStruxure Control Expert and the M340 and M580 controllers.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 52.7%
CVSS Severity
CVSS v3 Score 7.3
CVSS v2 Score 7.5
References
Products affected by CVE-2019-6855
-
cpe:2.3:a:schneider-electric:ecostruxure_control_expert:-
-
cpe:2.3:a:schneider-electric:ecostruxure_control_expert:14.0
-
cpe:2.3:a:schneider-electric:ecostruxure_control_expert:14.1
-
cpe:2.3:a:schneider-electric:unity_pro:11.0
-
cpe:2.3:a:schneider-electric:unity_pro:6.0
-
cpe:2.3:a:schneider-electric:unity_pro:7.0
-
cpe:2.3:h:schneider-electric:modicon_m340_bmxp341000:-
-
cpe:2.3:h:schneider-electric:modicon_m340_bmxp342000:-
-
cpe:2.3:h:schneider-electric:modicon_m340_bmxp3420102:-
-
cpe:2.3:h:schneider-electric:modicon_m340_bmxp342020:-
-
cpe:2.3:h:schneider-electric:modicon_m340_bmxp3420302:-
-
cpe:2.3:h:schneider-electric:modicon_m580_bmeh582040:-
-
cpe:2.3:h:schneider-electric:modicon_m580_bmeh584040:-
-
cpe:2.3:h:schneider-electric:modicon_m580_bmeh584040s:-
-
cpe:2.3:h:schneider-electric:modicon_m580_bmeh586040:-
-
cpe:2.3:h:schneider-electric:modicon_m580_bmeh586040s:-
-
cpe:2.3:h:schneider-electric:modicon_m580_bmep581020:-
-
cpe:2.3:h:schneider-electric:modicon_m580_bmep582020:-
-
cpe:2.3:h:schneider-electric:modicon_m580_bmep582040:-
-
cpe:2.3:h:schneider-electric:modicon_m580_bmep582040s:-
-
cpe:2.3:h:schneider-electric:modicon_m580_bmep583020:-
-
cpe:2.3:h:schneider-electric:modicon_m580_bmep583040:-
-
cpe:2.3:h:schneider-electric:modicon_m580_bmep584020:-
-
cpe:2.3:h:schneider-electric:modicon_m580_bmep584040:-
-
cpe:2.3:h:schneider-electric:modicon_m580_bmep584040s:-
-
cpe:2.3:h:schneider-electric:modicon_m580_bmep585040:-
-
cpe:2.3:h:schneider-electric:modicon_m580_bmep586040:-
-
cpe:2.3:o:schneider-electric:modicon_m340_bmxp341000_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_m340_bmxp341000_firmware:2.8
-
cpe:2.3:o:schneider-electric:modicon_m340_bmxp342000_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_m340_bmxp342000_firmware:2.8
-
cpe:2.3:o:schneider-electric:modicon_m340_bmxp3420102_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_m340_bmxp3420102_firmware:2.8
-
cpe:2.3:o:schneider-electric:modicon_m340_bmxp342020_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_m340_bmxp342020_firmware:2.8
-
cpe:2.3:o:schneider-electric:modicon_m340_bmxp3420302_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_m340_bmxp3420302_firmware:2.8
-
cpe:2.3:o:schneider-electric:modicon_m580_bmeh582040_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_m580_bmeh584040_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_m580_bmeh584040s_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_m580_bmeh586040_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_m580_bmeh586040s_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep581020_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep581020_firmware:1.0
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep581020_firmware:2.01
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep581020_firmware:2.10
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep581020_firmware:2.13
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep581020_firmware:2.20
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep581020_firmware:2.50
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep581020_firmware:2.70
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep581020_firmware:2.80
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep581020_firmware:2.90
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep582020_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep582020_firmware:1.0
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep582020_firmware:2.01
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep582020_firmware:2.10
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep582020_firmware:2.13
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep582020_firmware:2.20
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep582020_firmware:2.50
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep582020_firmware:2.70
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep582020_firmware:2.80
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep582020_firmware:2.90
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep582040_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep582040_firmware:1.0
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep582040_firmware:2.01
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep582040_firmware:2.10
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep582040_firmware:2.13
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep582040_firmware:2.20
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep582040_firmware:2.50
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep582040_firmware:2.70
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep582040_firmware:2.80
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep582040_firmware:2.90
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep582040s_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep582040s_firmware:2.60
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep582040s_firmware:2.70
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep582040s_firmware:2.80
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep582040s_firmware:2.90
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep583020_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep583020_firmware:1.0
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep583020_firmware:2.01
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep583020_firmware:2.10
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep583020_firmware:2.13
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep583020_firmware:2.20
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep583020_firmware:2.50
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep583020_firmware:2.70
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep583020_firmware:2.80
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep583020_firmware:2.90
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep583040_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep583040_firmware:1.0
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep583040_firmware:2.01
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep583040_firmware:2.10
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep583040_firmware:2.13
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep583040_firmware:2.20
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep583040_firmware:2.50
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep583040_firmware:2.70
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep583040_firmware:2.80
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep583040_firmware:2.90
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep584020_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep584020_firmware:1.0
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep584020_firmware:2.01
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep584020_firmware:2.10
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep584020_firmware:2.13
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep584020_firmware:2.20
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep584020_firmware:2.50
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep584020_firmware:2.70
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep584020_firmware:2.80
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep584020_firmware:2.90
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep584040_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep584040_firmware:2.10
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep584040_firmware:2.13
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep584040_firmware:2.20
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep584040_firmware:2.30
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep584040_firmware:2.41
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep584040_firmware:2.50
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep584040_firmware:2.60
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep584040_firmware:2.70
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep584040_firmware:2.80
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep584040_firmware:2.90
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep584040s_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep585040_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep585040_firmware:2.10
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep585040_firmware:2.20
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep585040_firmware:2.30
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep585040_firmware:2.41
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep585040_firmware:2.50
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep585040_firmware:2.60
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep585040_firmware:2.70
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep585040_firmware:2.80
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep585040_firmware:2.90
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep586040_firmware:-
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep586040_firmware:2.10
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep586040_firmware:2.20
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep586040_firmware:2.30
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep586040_firmware:2.41
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep586040_firmware:2.50
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep586040_firmware:2.70
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep586040_firmware:2.80
-
cpe:2.3:o:schneider-electric:modicon_m580_bmep586040_firmware:2.90