ICS Rockwell Automation Allen-Bradley PowerMonitor 1000 cgi-bin XSS (CVE-2018-19615)

Rule ID

1135943

Severity

High

Description

Rockwell Automation Allen-Bradley PowerMonitor 1000 all versions. A remote attacker could inject arbitrary code into a targeted user's web browser to gain access to the affected device.

Impact

Remote code execution

Recommendation

Update vendor's patch.

IPS Category

ICS threats

IPS Anomaly Group

N/A

IPS Rule Default Action

Deny

References

CVE-2018-19615

ICSA-19-050-04

EDB-45928

T1059.007

Keywords

N/A

Date Created

2019/08/29

Last Updated

2024/05/31

This website uses cookies to ensure you get the best experience on our website.

Learn more