CVE-2019-16879
Severity CVSS v4.0:
Pending analysis
Type:
CWE-306
Missing Authentication for Critical Function
Publication date:
14/04/2020
Last modified:
14/04/2020
Description
The Synergy Systems & Solutions (SSS) HUSKY RTU 6049-E70, with firmware Versions 5.0 and prior, has a Missing Authentication for Critical Function (CWE-306) vulnerability. The affected product does not require authentication for TELNET access, which may allow an attacker to change configuration or perform other malicious activities.
Impact
Base Score 3.x
9.80
Severity 3.x
CRITICAL
Base Score 2.0
7.50
Severity 2.0
HIGH
Vulnerable products and versions
CPE | From | Up to |
---|---|---|
cpe:2.3:o:mysyngeryss:husky_rtu_6049-e70_firmware:*:*:*:*:*:*:*:* | 5.0 (including) | |
cpe:2.3:h:mysyngeryss:husky_rtu_6049-e70:-:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page