Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveSiemensCVE-2019-6571
HistoryJun 12, 2019 - 2:29 p.m.

CVE-2019-6571

2019-06-1214:29:05
CWE-119
siemens
web.nvd.nist.gov
57
cve-2019-6571
siemens
logo!8
vulnerability
dos
network access
security
nvd

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

AI Score

7.3

Confidence

High

EPSS

0.001

Percentile

44.5%

JSON

A vulnerability has been identified in SIEMENS LOGO!8 (6ED1052-xyyxx-0BA8 FS:01 to FS:06 / Firmware version V1.80.xx and V1.81.xx), SIEMENS LOGO!8 (6ED1052-xyy08-0BA0 FS:01 / Firmware version < V1.82.02). An attacker with network access to port 10005/tcp of the LOGO! device could cause a Denial-of-Service condition by sending specially crafted packets. The security vulnerability could be exploited by an unauthenticated attacker with network access to the affected service. No user interaction is required to exploit this security vulnerability. Successful exploitation of the security vulnerability compromises availability of the targeted system. At the time of advisory publication no public exploitation of this security vulnerability was known.

Affected configurations

Nvd
Node
siemenslogo\!8_firmwareRange1.80.001.81.00
AND
siemenslogo\!8Match-
Node
siemenslogo\!8_firmwareRange<1.82.00
AND
siemenslogo\!8Match-
VendorProductVersionCPE
siemenslogo\!8_firmware*cpe:2.3:o:siemens:logo\!8_firmware:*:*:*:*:*:*:*:*
siemenslogo\!8-cpe:2.3:h:siemens:logo\!8:-:*:*:*:*:*:*:*

CNA Affected

[
  {
    "product": "SIEMENS LOGO!8",
    "vendor": "Siemens AG",
    "versions": [
      {
        "status": "affected",
        "version": "6ED1052-xyyxx-0BA8 FS:01 to FS:06 / Firmware version V1.80.xx and V1.81.xx"
      }
    ]
  },
  {
    "product": "SIEMENS LOGO!8",
    "vendor": "Siemens AG",
    "versions": [
      {
        "status": "affected",
        "version": "6ED1052-xyy08-0BA0 FS:01 / Firmware version < V1.82.02"
      }
    ]
  }
]

Related

prion 1
nvd 1
cvelist 1
ics 1
prion
prion
Design/Logic Flaw
2019-06-12 14:29:00
nvd
nvd
CVE-2019-6571
2019-06-12 14:29:05
cvelist
cvelist
CVE-2019-6571
2019-06-12 13:47:56
ics
ics
Siemens LOGO!8 Devices
2019-06-11 12:00:00

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

AI Score

7.3

Confidence

High

EPSS

0.001

Percentile

44.5%

JSON
Related for CVE-2019-6571
prion1nvd1cvelist1ics1