CVE-2019-5135 : What You Need to Know
Learn about CVE-2019-5135, a vulnerability in WAGO PFC100/200 controllers allowing disclosure of hashed user credentials. Find mitigation steps and affected versions here.
A timing discrepancy vulnerability in the authentication feature of the Web-Based Management (WBM) web application on WAGO PFC100/200 controllers allows disclosure of hashed user credentials.
Understanding CVE-2019-5135
This CVE involves a vulnerability in the authentication mechanism of WAGO PFC100/200 controllers that can lead to information disclosure.
What is CVE-2019-5135?
This CVE identifies a timing discrepancy vulnerability in the Web-Based Management (WBM) web application on WAGO PFC100/200 controllers, enabling the disclosure of hashed user credentials.
The Impact of CVE-2019-5135
The vulnerability affects WAGO PFC200 Firmware versions 03.00.39(12) and 03.01.07(13), as well as WAGO PFC100 Firmware version 03.00.39(12).
Technical Details of CVE-2019-5135
This section provides technical details of the vulnerability.
Vulnerability Description
The vulnerability lies in the PHP crypt() function used by the WBM application, allowing attackers to reveal hashed user credentials.
Affected Systems and Versions
- WAGO PFC200 Firmware version 03.00.39(12)
- WAGO PFC200 Firmware version 03.01.07(13)
- WAGO PFC100 Firmware version 03.00.39(12)
Exploitation Mechanism
Attackers can exploit the timing discrepancy in the authentication process to disclose hashed user credentials.
Mitigation and Prevention
Protect your systems from CVE-2019-5135 with these measures.
Immediate Steps to Take
- Update to the latest firmware version.
- Monitor system logs for any suspicious activities.
- Implement strong password policies.
Long-Term Security Practices
- Conduct regular security audits.
- Train employees on cybersecurity best practices.
Patching and Updates
- Apply security patches promptly.