CVE-2018-19616

HIGH

Rockwell Automation Allen-Bradley PowerMonitor 1000 - Client-Side Access Control Bypass to Administrator Manipulation

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2018-19616. PoCs published by Luca.Chiou.

AI-analyzed exploit summary The exploit describes an incorrect access control vulnerability in Rockwell Automation Allen-Bradley PowerMonitor 1000, where disabled buttons can be re-enabled via proxy manipulation, allowing attackers to add administrative users.

Description

An issue was discovered in Rockwell Automation Allen-Bradley PowerMonitor 1000. An unauthenticated user can add/edit/remove administrators because access control is implemented on the client side via a disabled attribute for a BUTTON element.

Exploits (1)

exploitdb WRITEUP

by Luca.Chiou · textwebappshardware

https://www.exploit-db.com/exploits/45937

View Code ZIP pw:eip

The exploit describes an incorrect access control vulnerability in Rockwell Automation Allen-Bradley PowerMonitor 1000, where disabled buttons can be re-enabled via proxy manipulation, allowing attackers to add administrative users.

Classification

Writeup 90%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: Rockwell Automation Allen-Bradley PowerMonitor 1000 1408-EM3A-ENT B

No auth needed

Prerequisites: Access to the web interface · Ability to intercept/modify HTTP requests

MITRE ATT&CK

T1562.001 - Disable or Modify Tools

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5

Core References

Third Party Advisory, US Government Resource x_refsource_misc

https://ics-cert.us-cert.gov/advisories/ICSA-19-050-04

Third Party Advisory, VDB Entry x_refsource_misc

http://packetstormsecurity.com/files/150619/Rockwell-Automation-Allen-Bradley-PowerMonitor-1000-Authentication-Bypass.html

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/106333

Third Party Advisory, VDB Entry exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/45937/

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/108538

Scores

CVSS v3 8.1

EPSS 0.3029

EPSS Percentile 98.0%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-287

Status published

Products (1)

rockwellautomation/powermonitor_1000_firmware 1408-em3a-ent_b

Published Dec 26, 2018

Tracked Since Feb 18, 2026