Insufficiently Random Values Vulnerability in Modicon M580, M340, Premium, and Quantum Firmware

CVE-2019-6821 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

CWE-330: Use of Insufficiently Random Values vulnerability, which could cause the hijacking of the TCP connection when using Ethernet communication in Modicon M580 firmware versions prior to V2.30, and all firmware versions of Modicon M340, Modicon Premium, Modicon Quantum.

Learn more about our Web Application Penetration Testing UK.