CVE-2018-13808

A vulnerability has been identified in CP 1604 (All versions), CP 1616 (All versions). An attacker with network access to port 23/tcp could extract internal communication data or cause a Denial-of-Service condition. Successful exploitation requires network access to a vulnerable device. At the time of advisory publication no public exploitation of this vulnerability was known.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:siemens:cp_1604_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:cp_1604:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:siemens:cp_1616_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:cp_1616:-:*:*:*:*:*:*:*

History

21 Nov 2024, 03:48

Type Values Removed Values Added
References () https://cert-portal.siemens.com/productcert/pdf/ssa-559174.pdf - Vendor Advisory () https://cert-portal.siemens.com/productcert/pdf/ssa-559174.pdf - Vendor Advisory

Information

Published : 2019-04-17 14:29

Updated : 2024-11-21 03:48


NVD link : CVE-2018-13808

Mitre link : CVE-2018-13808

CVE.ORG link : CVE-2018-13808


JSON object : View

Products Affected

siemens

  • cp_1604_firmware
  • cp_1604
  • cp_1616
  • cp_1616_firmware
CWE
CWE-200

Exposure of Sensitive Information to an Unauthorized Actor