CVE-2019-10955

Description

In Rockwell Automation MicroLogix 1400 Controllers Series A, All Versions Series B, v15.002 and earlier, MicroLogix 1100 Controllers v14.00 and earlier, CompactLogix 5370 L1 controllers v30.014 and earlier, CompactLogix 5370 L2 controllers v30.014 and earlier, CompactLogix 5370 L3 controllers (includes CompactLogix GuardLogix controllers) v30.014 and earlier, an open redirect vulnerability could allow a remote unauthenticated attacker to input a malicious link to redirect users to a malicious site that could run or download arbitrary malware on the user’s machine.

References

Link	Tags
https://ics-cert.us-cert.gov/advisories/ICSA-19-113-01	third party advisory us government resource
https://www.securityfocus.com/bid/108049	third party advisory vdb entry

Frequently Asked Questions

What is the severity of CVE-2019-10955?: CVE-2019-10955 has been scored as a medium severity vulnerability.
How to fix CVE-2019-10955?: To fix CVE-2019-10955, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2019-10955 being actively exploited in the wild?: It is possible that CVE-2019-10955 is being exploited or will be exploited in a near future based on public information. According to its EPSS score, there is a ~3% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2019-10955?: CVE-2019-10955 affects Rockwell Automation MicroLogix 1400 Controllers, Rockwell Automation MicroLogix 1100 Controllers, Rockwell Automation CompactLogix 5370 L1 controllers, Rockwell Automation CompactLogix 5370 L2 controllers, Rockwell Automation CompactLogix 5370 L3 controllers.

Description

Category

CWE-601 – URL Redirection to Untrusted Site ('Open Redirect')

References

Frequently Asked Questions