A vulnerability has been identified in CP 1604 (All versions), CP 1616 (All versions). An attacker with network access to port 23/tcp could extract internal communication data or cause a Denial-of-Service condition. Successful exploitation requires network access to a vulnerable device. At the time of advisory publication no public exploitation of this vulnerability was known.
References
Link | Resource |
---|---|
https://cert-portal.siemens.com/productcert/pdf/ssa-559174.pdf | Vendor Advisory |
https://cert-portal.siemens.com/productcert/pdf/ssa-559174.pdf | Vendor Advisory |
Configurations
History
21 Nov 2024, 03:48
Type | Values Removed | Values Added |
---|---|---|
References | () https://cert-portal.siemens.com/productcert/pdf/ssa-559174.pdf - Vendor Advisory |
Information
Published : 2019-04-17 14:29
Updated : 2024-11-21 03:48
NVD link : CVE-2018-13808
Mitre link : CVE-2018-13808
CVE.ORG link : CVE-2018-13808
JSON object : View
Products Affected
siemens
- cp_1604_firmware
- cp_1604
- cp_1616
- cp_1616_firmware
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor