Vulnerability identifier: #VU22292

Vulnerability risk: High

CVSSv3.1:

CVE-ID: CVE-2019-13549

CWE-ID: CWE-306

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
pCOWeb
Hardware solutions / Firmware
Chiller SK 3232-Series
Hardware solutions / Other hardware appliances

Vendor: Carel
Rittal

Description

Mitigation
Cybersecurity Help is currently unaware of any official solution to address this vulnerability.

Vulnerable software versions

pCOWeb: A1.5.3 - B1.2.4

Chiller SK 3232-Series: All versions

CPE

• cpe:2.3:h:carel:pcoweb:B1.2.4:*:*:*:*:*:*:*

External links
http://ics-cert.us-cert.gov/advisories/icsa-19-297-01

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?