#VU17391 Missing authentication for critical function in PR100088 Modbus gateway - CVE-2019-6533

Cybersecurity Help s.r.o.

Published: 2019-02-06

Vulnerability identifier: #VU17391

Vulnerability risk: Low

CVSSv4.0: 8 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2019-6533

CWE-ID: CWE-306

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
PR100088 Modbus gateway
Hardware solutions / Firmware

Vendor: Kunbus

Description

The vulnerability allows a remote attacker to bypass authentication.

The vulnerability exists due to missing authentication for critical function. A remote attacker can read and write registers used to store Modbus values from the web interface without authentication.

Mitigation
Update to version R02.

Vulnerable software versions

PR100088 Modbus gateway: before R02

External links
https://ics-cert.us-cert.gov/advisories/ICSA-19-036-05

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in Kunbus PR100088 Modbus Gateway