CVE-2019-6855
An Improper Authorization – CWE-285 vulnerability exists in EcoStruxure� Control Expert V14.0 and all versions of Unity Pro (previously calledEcoStruxure� Control Expert), which could allow a bypass of the authentication process between EcoStruxure Control Expert and the controller.
Source: CVE-2019-6855