What the vulnerability does

01Description

An attacker could retrieve passwords from a HTTP GET request from the Kunbus PR100088 Modbus gateway versions prior to Release R02 (or Software Version 1.1.13166) if the attacker is in an MITM position.

Key dates

02Disclosure timeline

April 2, 2019 CVE published
August 4, 2024 Record updated