CVE Vulnerabilities

CVE-2019-9590

Published: Mar 06, 2019 | Modified: Jul 21, 2021

CVSS 3.x

7.5

HIGH

Source:

NVD

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CVSS 2.x

5 MEDIUM

RedHat/V2

RedHat/V3

Ubuntu

Additional information

NVD	https://nvd.nist.gov/vuln/detail/CVE-2019-9590
CWE	https://cwe.mitre.org/data/definitions/.html

An issue was discovered on TENGCONTROL T-920 PLC v5.5 devices. It allows remote attackers to cause a denial of service (persistent failure mode) by sending a series of x19xb2x00x00x00x06x43x01x00xacxffx00 (aka UID 0x43) requests to TCP port 502.

Affected Software

Name	Vendor	Start Version	End Version
T-920_plc_firmware	Tengcon	5.5 (including)	5.5 (including)

References

https://github.com/Ni9htMar3/vulnerability/blob/master/PLC/%E8%85%BE%E6%8E%A7/T920_PLC_DOS.md

Aqua Container Security

Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed.