CVE-2019-6849 - AskarLabs CVE Database

CVE-2019-6849

Vendor N/A

Product Modicon M580, Modicon BMENOC 0311, Modicon BMENOC 0321

Weakness CWE-200 · Info exposure

Published October 29, 2019

Last update August 4, 2024

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

A CWE-200: Information Exposure vulnerability exists in Modicon M580, Modicon BMENOC 0311, and Modicon BMENOC 0321, which could cause the disclosure of sensitive information when using specific Modbus services provided by the REST API of the controller/communication module.

Key dates

02Disclosure timeline

October 29, 2019 CVE published

August 4, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2019-6849

Related vulnerabilities

04Related CVE

CVE-2026-49355 OpenProject: Private work package data disclosure through single meeting agenda item API CVE-2022-20953 Cisco TelePresence Collaboration Endpoint and RoomOS Software Vulnerabilities CVE-2022-34313 IBM CICS TX Standard is vulnerable to allowing attackers access to an application via insecure session cookies CVE-2025-12540 ShareThis Dashboard for Google Analytics <= 3.2.4 - Unauthenticated Google Analytics Data Exposure CVE-2023-5166 Docker Desktop before 4.23.0 allows Access Token theft via a crafted extension icon URL