ID
VAR-202002-0333
CVE
CVE-2019-20045
TITLE
Synergy Systems & Solutions HUSKY RTU 6049-E70 Input validation error vulnerability
Trust: 1.4
sources:
IVD: 01a94e30-93e5-49f7-8041-12c7e8fe4e6b //
CNVD: CNVD-2020-15259 //
CNNVD: CNNVD-202002-687
DESCRIPTION
The Synergy Systems & Solutions PLC & RTU system has a vulnerability in HUSKY RTU 6049-E70 firmware versions 5.0 and prior. Specially crafted malicious packets could cause disconnection of active authentic connections or reboot of device. This is a different issue than CVE-2019-16879 and CVE-2019-20046. This vulnerability is CVE-2019-16879 , CVE-2019-20046 Is a different vulnerability.Service operation interruption (DoS) It may be put into a state
Trust: 2.34
sources:
NVD: CVE-2019-20045 //
JVNDB: JVNDB-2019-014640 //
CNVD: CNVD-2020-15259 //
IVD: 01a94e30-93e5-49f7-8041-12c7e8fe4e6b
IOT TAXONOMY
| category: | ['ICS', 'Network device'] | sub_category: | - | Trust: 0.6 |
| category: | ['ICS'] | sub_category: | - | Trust: 0.2 |
sources:
IVD: 01a94e30-93e5-49f7-8041-12c7e8fe4e6b //
CNVD: CNVD-2020-15259
AFFECTED PRODUCTS
| vendor: | s3india | model: | husky rtu 6049-e70 | scope: | lte | version: | 5.0 | Trust: 1.0 |
| vendor: | synergy | model: | husky rtu 6049-e70 | scope: | eq | version: | 5.0 | Trust: 0.8 |
| vendor: | synergy | model: | systems & solutions husky rtu 6049-e70 | scope: | lte | version: | <=5.0 | Trust: 0.6 |
| vendor: | husky rtu 6049 e70 | model: | - | scope: | eq | version: | * | Trust: 0.2 |
sources:
IVD: 01a94e30-93e5-49f7-8041-12c7e8fe4e6b //
CNVD: CNVD-2020-15259 //
JVNDB: JVNDB-2019-014640 //
NVD: CVE-2019-20045
CVSS
SEVERITY | CVSSV2 | CVSSV3 | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
|
sources:
IVD: 01a94e30-93e5-49f7-8041-12c7e8fe4e6b //
CNVD: CNVD-2020-15259 //
JVNDB: JVNDB-2019-014640 //
CNNVD: CNNVD-202002-687 //
NVD: CVE-2019-20045
PROBLEMTYPE DATA
| problemtype: | CWE-20 | Trust: 1.8 |
sources:
JVNDB: JVNDB-2019-014640 //
NVD: CVE-2019-20045
THREAT TYPE
remote
Trust: 0.6
sources:
CNNVD: CNNVD-202002-687
TYPE
Input validation error
Trust: 0.8
sources:
IVD: 01a94e30-93e5-49f7-8041-12c7e8fe4e6b //
CNNVD: CNNVD-202002-687
CONFIGURATIONS
sources:
JVNDB: JVNDB-2019-014640
PATCH
| title: | Top Page | url: | https://www.s3india.com/ | Trust: 0.8 |
| title: | Patch for Synergy Systems & Solutions HUSKY RTU 6049-E70 Input Validation Error Vulnerability | url: | https://www.cnvd.org.cn/patchInfo/show/206787 | Trust: 0.6 |
| title: | Multiple Siemens Product security vulnerabilities | url: | http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=108136 | Trust: 0.6 |
sources:
CNVD: CNVD-2020-15259 //
JVNDB: JVNDB-2019-014640 //
CNNVD: CNNVD-202002-687
EXTERNAL IDS
| db: | NVD | id: | CVE-2019-20045 | Trust: 3.2 |
| db: | ICS CERT | id: | ICSA-20-042-01 | Trust: 3.0 |
| db: | CNVD | id: | CNVD-2020-15259 | Trust: 0.8 |
| db: | CNNVD | id: | CNNVD-202002-687 | Trust: 0.8 |
| db: | JVNDB | id: | JVNDB-2019-014640 | Trust: 0.8 |
| db: | AUSCERT | id: | ESB-2020.0486 | Trust: 0.6 |
| db: | AUSCERT | id: | ESB-2020.0486.3 | Trust: 0.6 |
| db: | AUSCERT | id: | ESB-2020.0486.2 | Trust: 0.6 |
| db: | ICS CERT | id: | ICSA-20-042-06 | Trust: 0.6 |
| db: | ICS CERT | id: | ICSA-20-042-07 | Trust: 0.6 |
| db: | ICS CERT | id: | ICSA-20-042-10 | Trust: 0.6 |
| db: | ICS CERT | id: | ICSA-20-042-09 | Trust: 0.6 |
| db: | ICS CERT | id: | ICSA-20-042-02 | Trust: 0.6 |
| db: | ICS CERT | id: | ICSA-20-042-05 | Trust: 0.6 |
| db: | ICS CERT | id: | ICSA-20-042-08 | Trust: 0.6 |
| db: | ICS CERT | id: | ICSA-20-042-04 | Trust: 0.6 |
| db: | ICS CERT | id: | ICSA-20-042-03 | Trust: 0.6 |
| db: | NSFOCUS | id: | 47393 | Trust: 0.6 |
| db: | IVD | id: | 01A94E30-93E5-49F7-8041-12C7E8FE4E6B | Trust: 0.2 |
sources:
IVD: 01a94e30-93e5-49f7-8041-12c7e8fe4e6b //
CNVD: CNVD-2020-15259 //
JVNDB: JVNDB-2019-014640 //
CNNVD: CNNVD-202002-687 //
NVD: CVE-2019-20045
REFERENCES
| url: | https://www.us-cert.gov/ics/advisories/icsa-20-042-01 | Trust: 3.0 |
| url: | https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-20045 | Trust: 0.8 |
| url: | https://nvd.nist.gov/vuln/detail/cve-2019-20045 | Trust: 0.8 |
| url: | https://www.us-cert.gov/ics/advisories/icsa-20-042-10 | Trust: 0.6 |
| url: | https://www.us-cert.gov/ics/advisories/icsa-20-042-09 | Trust: 0.6 |
| url: | https://www.us-cert.gov/ics/advisories/icsa-20-042-08 | Trust: 0.6 |
| url: | https://www.us-cert.gov/ics/advisories/icsa-20-042-07 | Trust: 0.6 |
| url: | https://www.us-cert.gov/ics/advisories/icsa-20-042-06 | Trust: 0.6 |
| url: | https://www.us-cert.gov/ics/advisories/icsa-20-042-05 | Trust: 0.6 |
| url: | https://www.us-cert.gov/ics/advisories/icsa-20-042-04 | Trust: 0.6 |
| url: | https://www.us-cert.gov/ics/advisories/icsa-20-042-03 | Trust: 0.6 |
| url: | https://www.us-cert.gov/ics/advisories/icsa-20-042-02 | Trust: 0.6 |
| url: | https://www.auscert.org.au/bulletins/esb-2020.0486/ | Trust: 0.6 |
| url: | https://www.auscert.org.au/bulletins/esb-2020.0486.2/ | Trust: 0.6 |
| url: | https://www.auscert.org.au/bulletins/esb-2020.0486.3/ | Trust: 0.6 |
| url: | http://www.nsfocus.net/vulndb/47393 | Trust: 0.6 |
sources:
CNVD: CNVD-2020-15259 //
JVNDB: JVNDB-2019-014640 //
CNNVD: CNNVD-202002-687 //
NVD: CVE-2019-20045
SOURCES
| db: | IVD | id: | 01a94e30-93e5-49f7-8041-12c7e8fe4e6b |
| db: | CNVD | id: | CNVD-2020-15259 |
| db: | JVNDB | id: | JVNDB-2019-014640 |
| db: | CNNVD | id: | CNNVD-202002-687 |
| db: | NVD | id: | CVE-2019-20045 |
LAST UPDATE DATE
2024-11-23T19:49:40.349000+00:00
SOURCES UPDATE DATE
| db: | CNVD | id: | CNVD-2020-15259 | date: | 2020-03-04T00:00:00 |
| db: | JVNDB | id: | JVNDB-2019-014640 | date: | 2020-03-06T00:00:00 |
| db: | CNNVD | id: | CNNVD-202002-687 | date: | 2020-08-05T00:00:00 |
| db: | NVD | id: | CVE-2019-20045 | date: | 2024-11-21T04:37:57.213 |
SOURCES RELEASE DATE
| db: | IVD | id: | 01a94e30-93e5-49f7-8041-12c7e8fe4e6b | date: | 2020-02-12T00:00:00 |
| db: | CNVD | id: | CNVD-2020-15259 | date: | 2020-03-04T00:00:00 |
| db: | JVNDB | id: | JVNDB-2019-014640 | date: | 2020-03-06T00:00:00 |
| db: | CNNVD | id: | CNNVD-202002-687 | date: | 2020-02-12T00:00:00 |
| db: | NVD | id: | CVE-2019-20045 | date: | 2020-02-14T17:15:12.723 |