Authentication Vulnerability in TIM 1531 IRC by Siemens
CVE-2018-13816

10CRITICAL

Key Information:

Vendor: Siemens
Status: Tim 1531 Irc
Vendor: CVE Published:; 12 December 2018

What is CVE-2018-13816?

An authentication bypass vulnerability has been discovered in TIM 1531 IRC devices, rendering them vulnerable to unauthorized access through port 102/tcp. Despite appropriate configurations, the devices lack the necessary checks to secure this port. An attacker can exploit this vulnerability by sending specially crafted packets to the affected port without requiring any user interaction or privileges. As of the advisory publication, no known instances of exploitation had been reported.

Affected Version(s)

TIM 1531 IRC TIM 1531 IRC : All version < V2.0

References

https://cert-portal.siemens.com/productcert/pdf/ssa-98239...

x_refsource_CONFIRM

http://www.securityfocus.com/bid/106194

vdb-entryx_refsource_BID

CVSS V3.1

Score:

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 12, 2018
Vulnerability Reserved
Jul 10, 2018