What is the vulnerability ID for this vulnerability?

The vulnerability ID for this vulnerability is CVE-2019-6833.

What is the severity rating of CVE-2019-6833?

The severity rating of CVE-2019-6833 is medium with a value of 6.5.

How can I fix CVE-2019-6833?

To fix CVE-2019-6833, it is recommended to apply the security patches provided by Schneider-electric. Please refer to their website for more information.

Vulnerability/
CVE-2019-6833

medium

6.5

CWE

754

17/9/2019

4/8/2024

CVE-2019-6833

First published: Tue Sep 17 2019(Updated: )

A CWE-754 – Improper Check for Unusual or Exceptional Conditions vulnerability exists in Magelis HMI Panels (all versions of - HMIGTO, HMISTO, XBTGH, HMIGTU, HMIGTUX, HMISCU, HMISTU, XBTGT, XBTGT, HMIGXO, HMIGXU), which could cause a temporary freeze of the HMI when a high rate of frames is received. When the attack stops, the buffered commands are processed by the HMI panel.

Credit: cybersecurity@se.com

Affected Software	Affected Version	How to fix
Schneider-electric Hmigto Firmware
Schneider-electric Hmigto1300
Schneider-electric Hmigto1310
Schneider-electric Hmigto2300
Schneider-electric Hmigto2310
Schneider-electric Hmigto2315
Schneider-electric Hmigto3510
Schneider-electric Hmigto4310
Schneider-electric Hmigto5310
Schneider-electric Hmigto5315
Schneider-electric Hmigto6310
Schneider-electric Hmigto6315
Schneider-electric Hmisto Firmware
Schneider-electric Hmisto501
Schneider-electric Hmisto511
Schneider-electric Hmisto512
Schneider-electric Hmisto531
Schneider-electric Hmisto532
Schneider-electric Hmisto705
Schneider-electric Hmisto715
Schneider-electric Hmisto735
Schneider-electric Xbtgh Firmware
Schneider-electric Xbtgh2460
Schneider-electric Hmigtu Firmware
Schneider-electric Hmig2u
Schneider-electric Hmig3u
Schneider-electric Hmig3ufc
Schneider-electric Hmig5u
Schneider-electric Hmig5u2
Schneider-electric Hmig5ufc
Schneider-electric Hmig5ul8a
Schneider-electric Hmiscu Firmware
Schneider-electric Hmiscu6a5
Schneider-electric Hmiscu6b5
Schneider-electric Hmiscu8a5
Schneider-electric Hmiscu8b5
Schneider-electric Hmistu Firmware
Schneider-electric Hmistu655
Schneider-electric Hmistu655w
Schneider-electric Hmistu855
Schneider-electric Hmistu855w
Schneider-electric Xbtgt Firmware
Schneider-electric Xbtgt2430
Schneider-electric Xbtgt2930
Schneider-electric Hmigxo Firmware
Schneider-electric Hmigxo
Schneider-electric Hmigxu Firmware
Schneider-electric Hmigxu35
Schneider-electric Hmigxu55

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the vulnerability ID for this vulnerability?
The vulnerability ID for this vulnerability is CVE-2019-6833.
What is the severity rating of CVE-2019-6833?
The severity rating of CVE-2019-6833 is medium with a value of 6.5.
Which software versions are affected by CVE-2019-6833?
The Magelis HMI Panels, including all versions of HMIGTO, HMISTO, XBTGH, HMIGTU, HMIGTUX, HMISCU, HMISTU, XBTGT, HMIGXO, and HMIGXU are affected by CVE-2019-6833.
What is the impact of CVE-2019-6833?
The vulnerability could cause a temporary freeze of the HMI when a high rate of frames is received.
How can I fix CVE-2019-6833?
To fix CVE-2019-6833, it is recommended to apply the security patches provided by Schneider-electric. Please refer to their website for more information.

CVE-2019-6833

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the vulnerability ID for this vulnerability?

What is the severity rating of CVE-2019-6833?

Which software versions are affected by CVE-2019-6833?

What is the impact of CVE-2019-6833?

How can I fix CVE-2019-6833?

Company

Resources

Contact