Lucene search

K
nvd[email protected]NVD:CVE-2014-5415
HistoryOct 05, 2016 - 10:59 a.m.

CVE-2014-5415

2016-10-0510:59:01
CWE-264
web.nvd.nist.gov
3

CVSS2

9.4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:C/A:N

CVSS3

9.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

AI Score

9.3

Confidence

High

EPSS

0.004

Percentile

73.0%

Beckhoff Embedded PC images before 2014-10-22 and Automation Device Specification (ADS) TwinCAT components might allow remote attackers to obtain access via the (1) Windows CE Remote Configuration Tool, (2) CE Remote Display service, or (3) TELNET service.

Affected configurations

Nvd
Node
beckhoffembedded_pc_imagesMatch-
OR
beckhofftwincatMatch-
VendorProductVersionCPE
beckhoffembedded_pc_images-cpe:2.3:a:beckhoff:embedded_pc_images:-:*:*:*:*:*:*:*
beckhofftwincat-cpe:2.3:a:beckhoff:twincat:-:*:*:*:*:*:*:*

CVSS2

9.4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:C/A:N

CVSS3

9.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

AI Score

9.3

Confidence

High

EPSS

0.004

Percentile

73.0%

Related for NVD:CVE-2014-5415