Vulnerability CVE-2018-4833
Published: 2018-06-14

Description:
A vulnerability has been identified in RFID 181-EIP (All versions), RUGGEDCOM Win (V4.4, V4.5, V5.0, and V5.1), SCALANCE X-200 (All versions < V5.2.3), SCALANCE X-200IRT (All versions < V5.4.1), SCALANCE X-200RNA (All versions < V3.2.6), SCALANCE X-300 (All versions), SCALANCE X408 (All versions), SCALANCE X414 (All versions), SIMATIC RF182C (All versions). Unprivileged remote attackers located in the same local network segment (OSI Layer 2) could gain remote code execution on the affected products by sending a specially crafted DHCP response to a client?s DHCP request.

Type:

CWE-20

 (Improper Input Validation)

CVSS2 => (AV:A/AC:L/Au:N/C:P/I:P/A:P)

CVSS Base Score
Impact Subscore
Exploitability Subscore
5.8/10
6.4/10
6.5/10
Exploit range
Attack complexity
Authentication
Adjacent network
Low
No required
Confidentiality impact
Integrity impact
Availability impact
Partial
Partial
Partial
Affected software
Siemens -> Rfid 181-eip firmware 
Siemens -> Ruggedcom wimax firmware 
Siemens -> Scalance x200irt firmware 
Siemens -> Scalance x204rna firmware 
Siemens -> Scalance x300 firmware 
Siemens -> Scalance x408 firmware 
Siemens -> Scalance x414 firmware 
Siemens -> Simatic rf182c firmware 

 References:
https://cert-portal.siemens.com/productcert/pdf/ssa-181018.pdf
Copyright 2024, cxsecurity.com

 

Back to Top