How severe is CVE-2019-19278?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 6.8 out of 10.

What type of vulnerability is CVE-2019-19278?

This is classified as CWE-693, which is a common weakness in software security.

CVE-2019-19278 - MEDIUM Severity | CVSS 6.8

Vulnerability Description

A vulnerability has been identified in SINAMICS PERFECT HARMONY GH180 Drives MLFB 6SR32..-.....-.... MLFB 6SR4...-.....-.... MLFB 6SR5...-.....-.... With option A30 (HMIs 12 inches or larger) (All versions), SINAMICS PERFECT HARMONY GH180 Drives MLFB 6SR325.-.....-.... (High Availability) (All versions). The affected device contains a vulnerability that could allow an unauthenticated attacker to restore the affected device to a point where predefined application and operating system protection mechanisms are not in place. Successful exploitation requires physical access to the system, but no system privileges and no user interaction. An attacker could use the vulnerability to compromise confidentialiy, integrity and availability of the device. At the time of advisory publication no public exploitation of this security vulnerability was known.

Related Vulnerabilities

CVE-2018-9314

MEDIUM

CVSS:6.8(Medium)

The Head Unit HU_NBT (aka Infotainment) component on BMW i Series, BMW X Series, BMW 3 Series, BMW 5 Series, and BMW 7 Series vehicles produced in 2012 through 2018 allows an attack by an attacker who...

CWE-6932018

CVE-2020-5379

MEDIUM

CVSS:6.8(Medium)

Dell Inspiron 7352 BIOS versions prior to A12 contain a UEFI BIOS Boot Services overwrite vulnerability. A local attacker with access to system memory may exploit this vulnerability by overwriting the...

CWE-6932020

CVE-2020-6977

MEDIUM

CVSS:6.8(Medium)

A restricted desktop environment escape vulnerability exists in the Kiosk Mode functionality of affected devices. Specially crafted inputs can allow the user to escape the restricted environment, resu...

CWE-6932020

CVE-2023-27383

MEDIUM

CVSS:6.8(Medium)

Protection mechanism failure in some Intel(R) oneAPI HPC Toolkit 2023.1 and Intel(R)MPI Library software before version 2021.9 may allow a privileged user to potentially enable escalation of privilege...

CWE-6932023

CVE-2024-38058

MEDIUM

CVSS:6.8(Medium)

BitLocker Security Feature Bypass Vulnerability

CWE-6932024

CVE-2025-21211

MEDIUM

CVSS:6.8(Medium)

Secure Boot Security Feature Bypass Vulnerability

CWE-6932025