Lucene search

[email protected]NVD:CVE-2013-4652

HistoryAug 01, 2013 - 1:32 p.m.

CVE-2013-4652

2013-08-0113:32:26

[email protected]

web.nvd.nist.gov

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.9 High

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

73.1%

JSON

Unspecified vulnerability in the command-line management interface on Siemens Scalance W7xx devices with firmware before 4.5.4 allows remote attackers to bypass authentication and execute arbitrary code via a (1) SSH or (2) TELNET connection.

Affected configurations

NVD

Node

siemensscalance_w700_series_firmwareRange≤4.4.0

AND

siemensscalance_w744-1Match-

siemensscalance_w744-1proMatch-

siemensscalance_w746-1Match-

siemensscalance_w746-1proMatch-

siemensscalance_w747-1Match-

siemensscalance_w747-1rrMatch-

siemensscalance_w784-1Match-

siemensscalance_w784-1rrMatch-

siemensscalance_w786-1proMatch-

siemensscalance_w786-2proMatch-

siemensscalance_w786-2rrMatch-

siemensscalance_w786-3proMatch-

siemensscalance_w788-1proMatch-

siemensscalance_w788-1rrMatch-

siemensscalance_w788-2proMatch-

siemensscalance_w788-2rrMatch-

References

www.siemens.com/corporate-technology/pool/de/forschungsfelder/siemens_security_advisory_ssa-120908.pdf

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.9 High

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

73.1%

JSON

Related for NVD:CVE-2013-4652

cve1 prion1 cvelist1 nessus1 ics1