CVE-2018-13816

10CRITICAL

Key Information:

Vendor: Siemens
Status: Tim 1531 Irc
Vendor: CVE Published:; 12 December 2018

Summary

A vulnerability has been identified in TIM 1531 IRC (All version < V2.0). The devices was missing proper authentication on port 102/tcp, although configured. Successful exploitation requires an attacker to be able to send packets to port 102/tcp of the affected device. No user interaction and no user privileges are required to exploit the vulnerability. At the time of advisory publication no public exploitation of this vulnerability was known.

Affected Version(s)

TIM 1531 IRC TIM 1531 IRC : All version < V2.0

References

https://cert-portal.siemens.com/productcert/pdf/ssa-98239...

x_refsource_CONFIRM

http://www.securityfocus.com/bid/106194

vdb-entryx_refsource_BID

CVSS V3.1

Score:

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Changed

Timeline

Vulnerability published
Dec 12, 2018
Vulnerability Reserved
Jul 10, 2018