| |
Vulnerability CVE-2018-8862
Published: 2018-05-25
Description: |
In ATI Systems Emergency Mass Notification Systems (HPSS16, HPSS32, MHPSS, and ALERT4000) devices, an improper authentication vulnerability caused by specially crafted malicious radio transmissions may allow an attacker to remotely trigger false alarms. |
Type:
CWE-287 (Improper Authentication)
CVSS2 => (AV:A/AC:M/Au:N/C:N/I:P/A:N)
CVSS Base Score |
Impact Subscore |
Exploitability Subscore |
2.9/10 |
2.9/10 |
5.5/10 |
Exploit range |
Attack complexity |
Authentication |
Adjacent network |
Medium |
No required |
Confidentiality impact |
Integrity impact |
Availability impact |
None |
Partial |
None |
References: |
http://www.securityfocus.com/bid/103721
https://ics-cert.us-cert.gov/advisories/ICSA-18-100-01
|
|
|
Copyright 2024, cxsecurity.com
|
|
|