#VU25342 Improper Check for Unusual or Exceptional Conditions in Schneider Electric products - CVE-2019-6833

Cybersecurity Help s.r.o.

Published: 2020-02-14

Vulnerability identifier: #VU25342

Vulnerability risk: Medium

CVSSv4.0: 4.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2019-6833

CWE-ID: CWE-754

Exploitation vector: Network

Exploit availability: No

Vendor: Schneider Electric

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to the HMI may temporarily freeze when the device receives a high rate of frames. When the attack stops, the buffered commands are processed by the HMI. A remote attacker can cause a denial of service condition on the target system.

Mitigation
Cybersecurity Help is currently unaware of any official solution to address this vulnerability.

Vulnerable software versions

Magelis HMIGTO: All versions

Magelis HMISTO: All versions

Magelis XBTGH: All versions

Magelis HMIGTU: All versions

Magelis HMIGTUX: All versions

Magelis HMISCU: All versions

Magelis HMISTU: All versions

Magelis XBTGT: All versions

Magelis XBTGC: All versions

Magelis HMIGXO: All versions

Magelis HMIGXU: All versions

External links
https://security.cse.iitk.ac.in/responsible-disclosure
https://www.schneider-electric.com/ww/en/download/document/SEVD-2019-225-01

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Denial of service in Schneider Electric Magelis HMI Panels