Details of VAR-201905-0036

ID

VAR-201905-0036

CVE

CVE-2019-6820

TITLE

plural Schneider Electric Vulnerability related to lack of certification for critical functions in the product

Trust: 0.8

sources: JVNDB: JVNDB-2019-004816

DESCRIPTION

A CWE-306: Missing Authentication for Critical Function vulnerability exists which could cause a modification of device IP configuration (IP address, network mask and gateway IP address) when a specific Ethernet frame is received in all versions of: Modicon M100, Modicon M200, Modicon M221, ATV IMC drive controller, Modicon M241, Modicon M251, Modicon M258, Modicon LMC058, Modicon LMC078, PacDrive Eco ,PacDrive Pro, PacDrive Pro2. plural Schneider Electric The product is vulnerable to a lack of authentication for critical functions.Tampering with information and disrupting service operations (DoS) There is a possibility of being put into a state. Schneider Electric Modicon M100 and others are products of Schneider Electric, France. The Schneider Electric Modicon M100 is a programmable logic controller. The Schneider Electric Modicon LMC078 is a motion controller. The Schneider Electric ATV IMC drive controller is a drive controller. An access control error vulnerability exists in several Schneider Electric products. The following products and versions are affected: Schneider Electric Modicon M100 (all versions); Modicon M200 (all versions); Modicon M221 (all versions); ATV IMC drive controller (all versions); Modicon M241 (all versions); Modicon M258 (all versions); Modicon LMC058 (all versions); Modicon LMC078 (all versions); PacDrive Eco (all versions); PacDrive Pro (all versions); PacDrive Pro2 (all versions)

Trust: 2.52

sources: NVD: CVE-2019-6820 // JVNDB: JVNDB-2019-004816 // CNVD: CNVD-2019-15887 // IVD: 275e0d38-40d0-4c09-b739-ba01427ab4f3 // VULHUB: VHN-158255 // VULMON: CVE-2019-6820

IOT TAXONOMY

category:

['ICS']

sub_category:

Trust: 0.8

sources: IVD: 275e0d38-40d0-4c09-b739-ba01427ab4f3 // CNVD: CNVD-2019-15887

AFFECTED PRODUCTS

vendor:	schneider electric	model:	modicon m100	scope:	eq	version:	*	Trust: 1.0
vendor:	schneider electric	model:	pacdrive eco	scope:	eq	version:	*	Trust: 1.0
vendor:	schneider electric	model:	modicon m258	scope:	eq	version:	*	Trust: 1.0
vendor:	schneider electric	model:	modicon lmc058	scope:	eq	version:	*	Trust: 1.0
vendor:	schneider electric	model:	modicon m251	scope:	eq	version:	*	Trust: 1.0
vendor:	schneider electric	model:	modicon m221	scope:	eq	version:	*	Trust: 1.0
vendor:	schneider electric	model:	pacdrive pro2	scope:	eq	version:	*	Trust: 1.0
vendor:	schneider electric	model:	modicon m241	scope:	eq	version:	*	Trust: 1.0
vendor:	schneider electric	model:	modicon lmc078	scope:	eq	version:	*	Trust: 1.0
vendor:	schneider electric	model:	modicon m200	scope:	eq	version:	*	Trust: 1.0
vendor:	schneider electric	model:	pacdrive pro	scope:	eq	version:	*	Trust: 1.0
vendor:	schneider electric	model:	atv imc drive controller	scope:	eq	version:	*	Trust: 1.0
vendor:	schneider electric	model:	atv imc drive controller	scope:	-	version:	-	Trust: 0.8
vendor:	schneider electric	model:	modicon lmc058	scope:	-	version:	-	Trust: 0.8
vendor:	schneider electric	model:	modicon lmc078	scope:	-	version:	-	Trust: 0.8
vendor:	schneider electric	model:	modicon m100	scope:	-	version:	-	Trust: 0.8
vendor:	schneider electric	model:	modicon m200	scope:	-	version:	-	Trust: 0.8
vendor:	schneider electric	model:	modicon m221	scope:	-	version:	-	Trust: 0.8
vendor:	schneider electric	model:	modicon m241	scope:	-	version:	-	Trust: 0.8
vendor:	schneider electric	model:	modicon m251	scope:	-	version:	-	Trust: 0.8
vendor:	schneider electric	model:	modicon m258	scope:	-	version:	-	Trust: 0.8
vendor:	schneider electric	model:	pacdrive eco	scope:	-	version:	-	Trust: 0.8
vendor:	schneider	model:	electric modicon m258	scope:	-	version:	-	Trust: 0.6
vendor:	schneider	model:	electric modicon lmc058	scope:	-	version:	-	Trust: 0.6
vendor:	schneider	model:	electric modicon lmc078	scope:	-	version:	-	Trust: 0.6
vendor:	schneider	model:	electric pacdrive eco	scope:	-	version:	-	Trust: 0.6
vendor:	schneider	model:	electric pacdrive pro	scope:	-	version:	-	Trust: 0.6
vendor:	schneider	model:	electric pacdrive pro2	scope:	-	version:	-	Trust: 0.6
vendor:	schneider	model:	electric modicon m200	scope:	-	version:	-	Trust: 0.6
vendor:	schneider	model:	electric modicon m221	scope:	-	version:	-	Trust: 0.6
vendor:	schneider	model:	electric atv imc drive controller	scope:	-	version:	-	Trust: 0.6
vendor:	schneider	model:	electric modicon m241	scope:	-	version:	-	Trust: 0.6
vendor:	schneider	model:	electric modicon m251	scope:	-	version:	-	Trust: 0.6
vendor:	modicon m100	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	pacdrive eco	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	pacdrive pro	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	pacdrive pro2	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	modicon m200	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	modicon m221	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	atv imc drive controller	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	modicon m241	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	modicon m251	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	modicon m258	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	modicon lmc058	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	modicon lmc078	model:	-	scope:	eq	version:	*	Trust: 0.2

sources: IVD: 275e0d38-40d0-4c09-b739-ba01427ab4f3 // CNVD: CNVD-2019-15887 // JVNDB: JVNDB-2019-004816 // NVD: CVE-2019-6820

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2019-6820
value:	HIGH
Trust: 1.0
NVD:	CVE-2019-6820
value:	HIGH
Trust: 0.8
CNVD:	CNVD-2019-15887
value:	MEDIUM
Trust: 0.6
CNNVD:	CNNVD-201905-932
value:	HIGH
Trust: 0.6
IVD:	275e0d38-40d0-4c09-b739-ba01427ab4f3
value:	HIGH
Trust: 0.2
VULHUB:	VHN-158255
value:	MEDIUM
Trust: 0.1
VULMON:	CVE-2019-6820
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2019-6820
severity:	MEDIUM
baseScore:	6.4
vectorString:	AV:N/AC:L/AU:N/C:N/I:P/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	4.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.9
CNVD:	CNVD-2019-15887
severity:	MEDIUM
baseScore:	6.4
vectorString:	AV:N/AC:L/AU:N/C:N/I:P/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	4.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6
IVD:	275e0d38-40d0-4c09-b739-ba01427ab4f3
severity:	MEDIUM
baseScore:	6.4
vectorString:	AV:N/AC:L/AU:N/C:N/I:P/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	4.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.9 [IVD]
Trust: 0.2
VULHUB:	VHN-158255
severity:	MEDIUM
baseScore:	6.4
vectorString:	AV:N/AC:L/AU:N/C:N/I:P/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	4.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

nvd@nist.gov:	CVE-2019-6820
baseSeverity:	HIGH
baseScore:	8.2
vectorString:	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	NONE
integrityImpact:	LOW
availabilityImpact:	HIGH
exploitabilityScore:	3.9
impactScore:	4.2
version:	3.1
Trust: 1.0
NVD:	CVE-2019-6820
baseSeverity:	HIGH
baseScore:	8.2
vectorString:	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	NONE
integrityImpact:	LOW
availabilityImpact:	HIGH
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: IVD: 275e0d38-40d0-4c09-b739-ba01427ab4f3 // CNVD: CNVD-2019-15887 // VULHUB: VHN-158255 // VULMON: CVE-2019-6820 // JVNDB: JVNDB-2019-004816 // CNNVD: CNNVD-201905-932 // NVD: CVE-2019-6820

PROBLEMTYPE DATA

problemtype:

CWE-306

Trust: 1.9

sources: VULHUB: VHN-158255 // JVNDB: JVNDB-2019-004816 // NVD: CVE-2019-6820

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201905-932

TYPE

Access control error

Trust: 0.8

sources: IVD: 275e0d38-40d0-4c09-b739-ba01427ab4f3 // CNNVD: CNNVD-201905-932

CONFIGURATIONS

sources: JVNDB: JVNDB-2019-004816

PATCH

title:	SEVD-2019-134-02	url:	https://www.schneider-electric.com/en/download/document/SEVD-2019-134-02/	Trust: 0.8
title:	CVE-2019-6820	url:	https://github.com/AlAIAL90/CVE-2019-6820	Trust: 0.1

sources: VULMON: CVE-2019-6820 // JVNDB: JVNDB-2019-004816

EXTERNAL IDS

db:	NVD	id:	CVE-2019-6820	Trust: 3.4
db:	SCHNEIDER	id:	SEVD-2019-134-02	Trust: 1.8
db:	CNNVD	id:	CNNVD-201905-932	Trust: 0.9
db:	CNVD	id:	CNVD-2019-15887	Trust: 0.8
db:	JVNDB	id:	JVNDB-2019-004816	Trust: 0.8
db:	IVD	id:	275E0D38-40D0-4C09-B739-BA01427AB4F3	Trust: 0.2
db:	VULHUB	id:	VHN-158255	Trust: 0.1
db:	VULMON	id:	CVE-2019-6820	Trust: 0.1

REFERENCES

url:	https://www.schneider-electric.com/en/download/document/sevd-2019-134-02/	Trust: 1.8
url:	https://nvd.nist.gov/vuln/detail/cve-2019-6820	Trust: 1.4
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-6820	Trust: 0.8
url:	https://web.nvd.nist.gov//vuln/detail/cve-2019-6820	Trust: 0.6
url:	https://cwe.mitre.org/data/definitions/306.html	Trust: 0.1
url:	https://github.com/alaial90/cve-2019-6820	Trust: 0.1
url:	https://nvd.nist.gov	Trust: 0.1

sources: CNVD: CNVD-2019-15887 // VULHUB: VHN-158255 // VULMON: CVE-2019-6820 // JVNDB: JVNDB-2019-004816 // CNNVD: CNNVD-201905-932 // NVD: CVE-2019-6820

SOURCES

db:	IVD	id:	275e0d38-40d0-4c09-b739-ba01427ab4f3
db:	CNVD	id:	CNVD-2019-15887
db:	VULHUB	id:	VHN-158255
db:	VULMON	id:	CVE-2019-6820
db:	JVNDB	id:	JVNDB-2019-004816
db:	CNNVD	id:	CNNVD-201905-932
db:	NVD	id:	CVE-2019-6820

LAST UPDATE DATE

2024-11-23T23:11:53.057000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2019-15887	date:	2019-05-30T00:00:00
db:	VULHUB	id:	VHN-158255	date:	2019-10-09T00:00:00
db:	VULMON	id:	CVE-2019-6820	date:	2021-08-26T00:00:00
db:	JVNDB	id:	JVNDB-2019-004816	date:	2019-06-10T00:00:00
db:	CNNVD	id:	CNNVD-201905-932	date:	2022-03-10T00:00:00
db:	NVD	id:	CVE-2019-6820	date:	2024-11-21T04:47:13.107

SOURCES RELEASE DATE

db:	IVD	id:	275e0d38-40d0-4c09-b739-ba01427ab4f3	date:	2019-05-30T00:00:00
db:	CNVD	id:	CNVD-2019-15887	date:	2019-05-30T00:00:00
db:	VULHUB	id:	VHN-158255	date:	2019-05-22T00:00:00
db:	VULMON	id:	CVE-2019-6820	date:	2019-05-22T00:00:00
db:	JVNDB	id:	JVNDB-2019-004816	date:	2019-06-10T00:00:00
db:	CNNVD	id:	CNNVD-201905-932	date:	2019-05-22T00:00:00
db:	NVD	id:	CVE-2019-6820	date:	2019-05-22T20:29:02.137