CVE-2019-10953
First published: Wed Apr 17 2019(Updated: )
ABB, Phoenix Contact, Schneider Electric, Siemens, WAGO - Programmable Logic Controllers, multiple versions. Researchers have found some controllers are susceptible to a denial-of-service attack due to a flood of network packets.
Credit: ics-cert@hq.dhs.gov
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Abb Pm554-tp-eth Firmware | ||
| Abb Pm554-tp-eth | ||
| Phoenixcontact Ilc 151 Eth Firmware | ||
| Phoenixcontact Ilc 151 Eth | ||
| Schneider-electric Modicon M221 Firmware | <1.10.0.0 | |
| Schneider-electric Modicon M221 | ||
| Siemens 6es7211-1ae40-0xb0 Firmware | ||
| Siemens 6es7211-1ae40-0xb0 | ||
| Siemens 6es7314-6eh04-0ab0 Firmware | ||
| Siemens 6es7314-6eh04-0ab0 | ||
| Siemens 6ed1052-1cc01-0ba8 Firmware | ||
| Siemens 6ed1052-1cc01-0ba8 | ||
| Wago Knx Ip Firmware | ||
| Wago Knx Ip | ||
| WAGO PFC100 Firmware | ||
| WAGO PFC100 | ||
| Wago Ethernet Firmware | ||
| Wago Ethernet | ||
| Wago Bacnet\/ip Firmware | ||
| Wago Bacnet\/ip |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this issue?
The vulnerability ID for this issue is CVE-2019-10953.
What is the severity level of CVE-2019-10953?
CVE-2019-10953 has a severity level of 7.5 (high).
Which software versions are affected by CVE-2019-10953?
ABB PM554-TP-ETH firmware, Phoenixcontact ILC 151 ETH firmware, and Schneider-electric Modicon M221 firmware versions up to 1.10.0.0 are affected by CVE-2019-10953.
What is the impact of the vulnerability CVE-2019-10953?
The vulnerability CVE-2019-10953 can allow an attacker to carry out a denial-of-service attack by flooding the network with packets.
Are there any references for CVE-2019-10953?
Yes, you can find more information about CVE-2019-10953 at the following links: [SecurityFocus](http://www.securityfocus.com/bid/108413) and [ICS-CERT](https://ics-cert.us-cert.gov/advisories/ICSA-19-106-03).
- collector/nvd-index
- agent/references
- agent/severity
- agent/author
- agent/weakness
- agent/type
- agent/description
- agent/event
- agent/first-publish-date
- agent/softwarecombine
- agent/tags
- agent/last-modified-date
- collector/mitre-cve
- source/MITRE
- vendor/abb
- canonical/abb pm554-tp-eth firmware
- canonical/abb pm554-tp-eth
- vendor/phoenixcontact
- canonical/phoenixcontact ilc 151 eth firmware
- canonical/phoenixcontact ilc 151 eth
- vendor/schneider-electric
- canonical/schneider-electric modicon m221 firmware
- canonical/schneider-electric modicon m221
- vendor/siemens
- canonical/siemens 6es7211-1ae40-0xb0 firmware
- canonical/siemens 6es7211-1ae40-0xb0
- canonical/siemens 6es7314-6eh04-0ab0 firmware
- canonical/siemens 6es7314-6eh04-0ab0
- canonical/siemens 6ed1052-1cc01-0ba8 firmware
- canonical/siemens 6ed1052-1cc01-0ba8
- vendor/wago
- canonical/wago knx ip firmware
- canonical/wago knx ip
- canonical/wago pfc100 firmware
- canonical/wago pfc100
- canonical/wago ethernet firmware
- canonical/wago ethernet
- canonical/wago bacnet\/ip firmware
- canonical/wago bacnet\/ip