Lucene search

[email protected]NVD:CVE-2019-6568

HistoryApr 17, 2019 - 2:29 p.m.

CVE-2019-6568

2019-04-1714:29:03

CWE-125

[email protected]

web.nvd.nist.gov

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.5 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

45.8%

JSON

The webserver of the affected devices contains a vulnerability that may lead to
a denial of service condition. An attacker may cause a denial of service
situation which leads to a restart of the webserver of the affected device.

The security vulnerability could be exploited by an attacker with network
access to the affected systems. Successful exploitation requires no system
privileges and no user interaction. An attacker could use the vulnerability
to compromise availability of the device.

Affected configurations

NVD

Node

siemenscp1604Match-

AND

siemenscp1604_firmware

Node

siemenscp1616_firmware

AND

siemenscp1616Match-

Node

siemenssimatic_rf185c_firmwareRange<1.1.0

AND

siemenssimatic_rf185cMatch-

Node

siemenssimatic_cp343-1_advanced_firmware

AND

siemenssimatic_cp343-1_advancedMatch-

Node

siemenssimatic_cp443-1_firmware

AND

siemenssimatic_cp443-1Match-

Node

siemenssimatic_cp443-1_advanced_firmware

AND

siemenssimatic_cp443-1_advancedMatch-

Node

siemenssimatic_et_200_sp_open_controller_cpu_1515sp_pc_firmwareRange<2.1.6

AND

siemenssimatic_et_200_sp_open_controller_cpu_1515sp_pcMatch-

Node

siemenssimatic_et_200_sp_open_controller_cpu_1515sp_pc2_firmwareRange<2.7

AND

siemenssimatic_et_200_sp_open_controller_cpu_1515sp_pc2Match-

Node

siemenssimatic_hmi_comfort_outdoor_panels_firmwareRange<15.1

siemenssimatic_hmi_comfort_outdoor_panels_firmwareMatch15.1-

AND

siemenssimatic_hmi_comfort_outdoor_panelsMatch-

Node

siemenssimatic_hmi_comfort_panels_firmwareRange<15.1

siemenssimatic_hmi_comfort_panels_firmwareMatch15.1-

AND

siemenssimatic_hmi_comfort_panelsMatch-

Node

siemenssimatic_hmi_ktp_mobile_panels_ktp400f_firmwareRange<15.1

siemenssimatic_hmi_ktp_mobile_panels_ktp400f_firmwareMatch15.1-

AND

siemenssimatic_hmi_ktp_mobile_panels_ktp400fMatch-

Node

siemenssimatic_hmi_ktp_mobile_panels_ktp700_firmwareRange<15.1

siemenssimatic_hmi_ktp_mobile_panels_ktp700_firmwareMatch15.1-

AND

siemenssimatic_hmi_ktp_mobile_panels_ktp700Match-

Node

siemenssimatic_hmi_ktp_mobile_panels_ktp700f_firmwareRange<15.1

siemenssimatic_hmi_ktp_mobile_panels_ktp700f_firmwareMatch15.1-

AND

siemenssimatic_hmi_ktp_mobile_panels_ktp700fMatch-

Node

siemenssimatic_hmi_ktp_mobile_panels_ktp900_firmwareRange<15.1

siemenssimatic_hmi_ktp_mobile_panels_ktp900_firmwareMatch15.1-

AND

siemenssimatic_hmi_ktp_mobile_panels_ktp900Match-

Node

siemenssimatic_hmi_ktp_mobile_panels_ktp900f_firmwareRange<15.1

siemenssimatic_hmi_ktp_mobile_panels_ktp900f_firmwareMatch15.1-

AND

siemenssimatic_hmi_ktp_mobile_panels_ktp900fMatch-

Node

siemenssimatic_cp443-1_opc_ua

siemenssimatic_ipc_diagmonitorRange<5.1.3

siemenssimatic_s7-1500_software_controllerRange<2.7

siemenssimatic_s7-plcsim_advancedRange<2.0

siemenssimatic_s7-plcsim_advancedMatch2.0-

siemenssimatic_s7-plcsim_advancedMatch2.0sp1

siemenssimatic_wincc_runtime_advancedRange<15.1

siemenssimatic_wincc_runtime_advancedMatch15.1-

siemenssimatic_wincc_runtime_advancedMatch15.1update1

siemenssimatic_wincc_runtime_advancedMatch15.1update2

siemenssimatic_wincc_runtime_advancedMatch15.1update3

siemenssitop_managerRange<1.1

Node

siemenssimatic_rf600r_firmwareRange<3.2.1

AND

siemenssimatic_rf600rMatch-

Node

siemenssimatic_rf188c_firmwareRange<1.1.0

AND

siemenssimatic_rf188cMatch-

Node

siemenssimatic_rf186c_firmwareRange<1.1.0

AND

siemenssimatic_rf186cMatch-

Node

siemenssimatic_rf182c_firmware

AND

siemenssimatic_rf182cMatch-

Node

siemenssimatic_rf181-eip_firmware

AND

siemenssimatic_rf181-eipMatch-

Node

siemenssimatic_s7-1500_firmwareRange<2.6.1

AND

siemenssimatic_s7-1500Match-

Node

siemenssimatic_s7-300_firmwareRange<3.3.17

AND

siemenssimatic_s7-300Match-

Node

siemenssimatic_s7-400_pn_firmware

AND

siemenssimatic_s7-400_pnMatch-

Node

siemenssimatic_s7-400_pn\/dp_firmware

AND

siemenssimatic_s7-400_pn\/dpMatch-

Node

siemenssimatic_teleservice_adapter_ie_advanced_firmware

AND

siemenssimatic_teleservice_adapter_ie_advancedMatch-

Node

siemenssimatic_teleservice_adapter_ie_basic_firmware

AND

siemenssimatic_teleservice_adapter_ie_basicMatch-

Node

siemenssimatic_teleservice_adapter_ie_standard_firmware

AND

siemenssimatic_teleservice_adapter_ie_standardMatch-

Node

siemenssimatic_winac_rtx_firmwareRange<2010

siemenssimatic_winac_rtx_firmwareMatch2010-

AND

siemenssimatic_winac_rtxMatch-

Node

siemenssimocode_pro_v_eip_firmwareRange<1.1.3

AND

siemenssimocode_pro_v_eipMatch-

Node

siemenssimocode_pro_v_pn_firmwareRange<2.1.3

AND

siemenssimocode_pro_v_pnMatch-

Node

siemenssinamics_g130Match-

AND

siemenssinamics_g130_firmwareRange<5.2

Node

siemenssinamics_g150Match-

AND

siemenssinamics_g150_firmwareRange<5.2

Node

siemenssinamics_s120_firmwareRange<5.2

AND

siemenssinamics_s120Match-

Node

siemenssinamics_s150_firmwareRange<5.1

siemenssinamics_s150_firmwareMatch5.1-

siemenssinamics_s150_firmwareMatch5.1sp1

siemenssinamics_s150_firmwareMatch5.1sp1_hotfix2

AND

siemenssinamics_s150Match-

Node

siemenssinamics_s210_firmwareRange<5.1

siemenssinamics_s210_firmwareMatch5.1-

siemenssinamics_s210_firmwareMatch5.1sp1

AND

siemenssinamics_s210Match-

Node

siemenssitop_psu8600_firmwareRange<1.5

AND

siemenssitop_psu8600Match-

Node

siemenssitop_ups1600Match-

AND

siemenssitop_ups1600_firmwareRange<2.3

Node

siemenstim_1531_ircMatch-

AND

siemenstim_1531_irc_firmwareRange<2.1

Node

siemenssimatic_s7-1500fMatch-

AND

siemenssimatic_s7-1500f_firmwareRange<2.6.1

Node

siemenssimatic_s7-1500sMatch-

AND

siemenssimatic_s7-1500s_firmwareRange<2.6.1

Node

siemenssimatic_s7-1500tMatch-

AND

siemenssimatic_s7-1500t_firmwareRange<2.6.1

Node

siemenssinamics_gh150_firmwareRange<4.8

siemenssinamics_gh150_firmwareMatch4.8-

AND

siemenssinamics_gh150Match-

Node

siemenssinamics_gl150_firmwareRange<4.8

siemenssinamics_gl150_firmwareMatch4.8-

AND

siemenssinamics_gl150Match-

Node

siemenssinamics_gm150_firmwareRange<4.8

siemenssinamics_gm150_firmwareMatch4.8-

AND

siemenssinamics_gm150Match-

Node

siemenssinamics_sl150_firmwareRange<4.8

siemenssinamics_sl150_firmwareMatch4.8-

AND

siemenssinamics_sl150Match-

Node

siemenssinamics_sm120_firmwareRange<4.8

siemenssinamics_sm120_firmwareMatch4.8-

AND

siemenssinamics_sm120Match-

Node

siemenssinamics_sm150_firmwareRange<5.1

siemenssinamics_sm150_firmwareMatch5.1-

AND

siemenssinamics_sm150Match-

References

cert-portal.siemens.com/productcert/pdf/ssa-480230.pdf

cert-portal.siemens.com/productcert/pdf/ssa-530931.pdf

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.5 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

45.8%

JSON

Related for NVD:CVE-2019-6568

prion1 ics3 symantec1 nessus2 cvelist1 cve1