NVD - CVE-2019-18858

Vulnerability Change Records for CVE-2019-18858

Change History

Initial Analysis by NIST 11/22/2019 11:51:48 AM

Action	Type	Old Value	New Value
Added	CPE Configuration		OR cpe:2.3:a:codesys:control_for_beaglebone::::::::* versions up to (excluding) 3.5.15.20 cpe:2.3:a:codesys:control_for_empc-a\/imx6::::::::* versions up to (excluding) 3.5.15.20 cpe:2.3:a:codesys:control_for_iot2000::::::::* versions up to (excluding) 3.5.15.20 cpe:2.3:a:codesys:control_for_linux::::::::* versions up to (excluding) 3.5.15.20 cpe:2.3:a:codesys:control_for_pfc100::::::::* versions up to (excluding) 3.5.15.20 cpe:2.3:a:codesys:control_for_pfc200::::::::* versions up to (excluding) 3.5.15.20 cpe:2.3:a:codesys:control_for_plcnext::::::::* versions up to (excluding) 3.5.15.20 cpe:2.3:a:codesys:control_for_raspberry_pi::::::::* versions up to (excluding) 3.5.15.20 cpe:2.3:a:codesys:control_rte::::::::* versions up to (excluding) 3.5.15.20 cpe:2.3:a:codesys:control_runtime_system_toolkit::::::::* versions up to (excluding) 3.5.15.20 cpe:2.3:a:codesys:control_win::::::::* versions up to (excluding) 3.5.15.20 cpe:2.3:a:codesys:embedded_target_visu_toolkit::::::::* versions up to (excluding) 3.5.15.20 cpe:2.3:a:codesys:hmi::::::::* versions up to (excluding) 3.5.15.20 cpe:2.3:a:codesys:remote_target_visu_toolkit::::::::* versions up to (excluding) 3.5.15.20
Added	CVSS V2		NIST (AV:N/AC:L/Au:N/C:P/I:P/A:P)
Added	CVSS V3.1		NIST AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Added	CWE		NIST CWE-120
Changed	Reference Type	https://customers.codesys.com/fileadmin/data/customers/security/2019/Advisory2019-10_CDS-68341.pdf No Types Assigned	https://customers.codesys.com/fileadmin/data/customers/security/2019/Advisory2019-10_CDS-68341.pdf Vendor Advisory
Changed	Reference Type	https://www.tenable.com/security/research/tra-2019-48 No Types Assigned	https://www.tenable.com/security/research/tra-2019-48 Exploit, Third Party Advisory