Denial-of-Service Vulnerability in SPPA-T3000 Migration Server by Siemens
CVE-2019-18325
9.8CRITICAL
Key Information:
- Vendor
- Siemens
- Vendor
- CVE Published:
- 12 December 2019
Summary
An identified vulnerability in the SPPA-T3000 MS3000 Migration Server allows an attacker with network access to disrupt service availability and may enable remote code execution through specially crafted TCP packets sent to port 5010. This issue is distinct from several other vulnerabilities in the same family, highlighting the need for targeted mitigation. As of the advisory's release, there have been no known public exploitation incidents of this vulnerability.
Affected Version(s)
SPPA-T3000 MS3000 Migration Server All versions
References
CVSS V3.1
Score:
9.8
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved