Product
RTU
Part No.
BMX-NOR-0200H
Make
Schneider Electric
Vulnerability
Agitate RTU by SNMP Truncate packet
Disclosure Timeline
15/Feb/2019 - Vulnerability reported
08/Mar/2019 - C3i Center asks for an update
18/Mar/2019- M/s. Schneider requested for a list of all vulnerabilities
19/Mar/2019 - C3i Center shared a list of vulnerabilities reported yet
20/Mar/2019 - M/s. Schneider thanks to C3i center and agreed to provide update on all the cases by early next week.
21/Mar/2019 - C3i Center acknowledged their mail and awaiting for their valuable response
27/Mar/2019 - M/s. Schneider requested to C3i for a Python scripts & Reported
vulnerability is still being evaluated
05/Apr/2019 - C3i sent exploit of vulnerability and gave some other
information of application which used during the attack
08/Mar/2019 - C3i Center asks for an update
18/Mar/2019- M/s. Schneider requested for a list of all vulnerabilities
19/Mar/2019 - C3i Center shared a list of vulnerabilities reported yet
20/Mar/2019 - M/s. Schneider thanks to C3i center and agreed to provide update on all the cases by early next week.
21/Mar/2019 - C3i Center acknowledged their mail and awaiting for their valuable response
27/Mar/2019 - M/s. Schneider requested to C3i for a Python scripts & Reported
vulnerability is still being evaluated
05/Apr/2019 - C3i sent exploit of vulnerability and gave some other
information of application which used during the attack
Status
Confirmed
Case Number
268361
CVE Number
CVE-2019-6813
Date