Vulnerabilities > CVE-2019-9011 - Exposure of Resource to Wrong Sphere vulnerability in Pilz PMC 3.0.0

047910
CVSS 5.3 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
LOW
Integrity impact
NONE
Availability impact
NONE
network
low complexity
pilz
CWE-668
NVD
Published: 2022-12-26
Updated: 2023-01-05

Summary

In Pilz PMC programming tool 3.x before 3.5.17 (based on CODESYS Development System), an attacker can identify valid usernames.

Vulnerable Configurations

Part Description Count
Application
Pilz
1

Common Weakness Enumeration (CWE)

References