First published: Wed Apr 17 2019(Updated: )
ABB, Phoenix Contact, Schneider Electric, Siemens, WAGO - Programmable Logic Controllers, multiple versions. Researchers have found some controllers are susceptible to a denial-of-service attack due to a flood of network packets.
Credit: ics-cert@hq.dhs.gov
Affected Software | Affected Version | How to fix |
---|---|---|
Abb Pm554-tp-eth Firmware | ||
Abb Pm554-tp-eth | ||
Phoenixcontact Ilc 151 Eth Firmware | ||
Phoenixcontact Ilc 151 Eth | ||
Schneider-electric Modicon M221 Firmware | <1.10.0.0 | |
Schneider-electric Modicon M221 | ||
Siemens 6es7211-1ae40-0xb0 Firmware | ||
Siemens 6es7211-1ae40-0xb0 | ||
Siemens 6es7314-6eh04-0ab0 Firmware | ||
Siemens 6es7314-6eh04-0ab0 | ||
Siemens 6ed1052-1cc01-0ba8 Firmware | ||
Siemens 6ed1052-1cc01-0ba8 | ||
Wago Knx Ip Firmware | ||
Wago Knx Ip | ||
WAGO PFC100 Firmware | ||
WAGO PFC100 | ||
Wago Ethernet Firmware | ||
Wago Ethernet | ||
Wago Bacnet\/ip Firmware | ||
Wago Bacnet\/ip |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this issue is CVE-2019-10953.
CVE-2019-10953 has a severity level of 7.5 (high).
ABB PM554-TP-ETH firmware, Phoenixcontact ILC 151 ETH firmware, and Schneider-electric Modicon M221 firmware versions up to 1.10.0.0 are affected by CVE-2019-10953.
The vulnerability CVE-2019-10953 can allow an attacker to carry out a denial-of-service attack by flooding the network with packets.
Yes, you can find more information about CVE-2019-10953 at the following links: [SecurityFocus](http://www.securityfocus.com/bid/108413) and [ICS-CERT](https://ics-cert.us-cert.gov/advisories/ICSA-19-106-03).