CVE-2019-6531

High

An attacker could retrieve passwords from a HTTP GET request from the Kunbus PR100088 Modbus gateway versions prior to Release R02 (or…

icscert·CWE-598·Published 2019-04-02

CVSS

8.1

EPSS

0.01

KEV

Exploits

cve.orgen

202 chars

An attacker could retrieve passwords from a HTTP GET request from the Kunbus PR100088 Modbus gateway versions prior to Release R02 (or Software Version 1.1.13166) if the attacker is in an MITM position.

NVDen

202 chars

NVDes

266 chars

Un atacante podría recuperar contraseñas de una petición HTTP GET desde el gateway PR100088 Modbus de Knubus, en versiones anteriores a la distribución R02 (o versiones de software 1.1.113166) si el atacante se encuentra en una posición de Man-in-the-Middle (MitM).

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	4.3	8.6	2.9	AV:N/AC:M/Au:N/C:P/I:N/A:N
3.1	Primary	NVD	8.1	2.2	5.9	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H