Unrated severityNVD Advisory· Published Dec 26, 2018· Updated Aug 5, 2024
CVE-2018-19616
CVE-2018-19616
Description
An issue was discovered in Rockwell Automation Allen-Bradley PowerMonitor 1000. An unauthenticated user can add/edit/remove administrators because access control is implemented on the client side via a disabled attribute for a BUTTON element.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1Patches
Vulnerability mechanics
References
5- www.exploit-db.com/exploits/45937/mitreexploitx_refsource_EXPLOIT-DB
- packetstormsecurity.com/files/150619/Rockwell-Automation-Allen-Bradley-PowerMonitor-1000-Authentication-Bypass.htmlmitrex_refsource_MISC
- www.securityfocus.com/bid/106333mitrevdb-entryx_refsource_BID
- www.securityfocus.com/bid/108538mitrevdb-entryx_refsource_BID
- ics-cert.us-cert.gov/advisories/ICSA-19-050-04mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.