In 3S-Smart Software Solutions GmbH CODESYS Control V3 products prior to version 3.5.14.0, user access management and communication encryption is not enabled by default, which could allow an attacker access to the device and sensitive information, including user credentials.
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/106248 | Third Party Advisory VDB Entry |
https://ics-cert.us-cert.gov/advisories/ICSA-18-352-03 | Third Party Advisory US Government Resource |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: icscert
Published: 2018-12-18T00:00:00
Updated: 2019-01-30T10:57:01
Reserved: 2018-05-01T00:00:00
Link: CVE-2018-10612
JSON object: View
NVD Information
Status : Modified
Published: 2019-01-29T16:29:00.247
Modified: 2019-10-09T23:32:55.087
Link: CVE-2018-10612
JSON object: View
Redhat Information
No data.