Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up

CVE-2019-6833

UNKNOWN
Published 2019-09-17T19:36:57
Actions:

Expert Analysis

Professional remediation guidance

Get tailored security recommendations from our analyst team for CVE-2019-6833. We'll provide specific mitigation strategies based on your environment and risk profile.

No CVSS data available

Description

A CWE-754 – Improper Check for Unusual or Exceptional Conditions vulnerability exists in Magelis HMI Panels (all versions of - HMIGTO, HMISTO, XBTGH, HMIGTU, HMIGTUX, HMISCU, HMISTU, XBTGT, XBTGT, HMIGXO, HMIGXU), which could cause a temporary freeze of the HMI when a high rate of frames is received. When the attack stops, the buffered commands are processed by the HMI panel.

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

Affected Products

Schneider Electric SE

Magelis HMI Panels

Affected Versions:

all versions of HMIGTO all versions of HMISTO all versions of XBTGH all versions of HMIGTU all versions of HMIGTUX all versions of HMISCU all versions of HMISTU all versions of XBTGT all versions of HMIGXO all versions of HMIGXU

GitHub Security Advisories

Community-driven vulnerability intelligence from GitHub

⚠ Unreviewed MODERATE

GHSA-w8qp-5q95-q255

Advisory Details

A CWE-754 ? Improper Check for Unusual or Exceptional Conditions vulnerability exists in Magelis HMI Panels (all versions of - HMIGTO, HMISTO, XBTGH, HMIGTU, HMIGTUX, HMISCU, HMISTU, XBTGT, XBTGT, HMIGXO, HMIGXU), which could cause a temporary freeze of the HMI when a high rate of frames is received. When the attack stops, the buffered commands are processed by the HMI panel.

CVSS Scoring

CVSS Score

5.0

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2019-6833
WEB https://security.cse.iitk.ac.in/responsible-disclosure
WEB https://www.schneider-electric.com/ww/en/download/document/SEVD-2019-225-01

Advisory provided by GitHub Security Advisory Database. Published: May 24, 2022, Modified: May 24, 2022

References

https://www.schneider-electric.com/ww/en/download/document/SEVD-2019-225-01
https://security.cse.iitk.ac.in/responsible-disclosure
Published: 2019-09-17T19:36:57
Last Modified: 2024-08-04T20:31:04.400Z
Copied to clipboard!