CVE-2019-6569

9.1CRITICAL

Key Information:

Vendor: Siemens
Status: Scalance X204-2; Scalance X204-2fm; Scalance X204-2ld; Scalance X204-2ld Ts
Vendor: CVE Published:; 26 March 2019

Summary

The monitor barrier of the affected products insufficiently blocks data from being forwarded over the mirror port into the mirrored network. An attacker could use this behavior to transmit malicious packets to systems in the mirrored network, possibly influencing their configuration and runtime behavior.

Affected Version(s)

SCALANCE X204-2 All versions < V5.2.6

SCALANCE X204-2FM All versions < V5.2.6

SCALANCE X204-2LD All versions < V5.2.6

References

https://cert-portal.siemens.com/productcert/pdf/ssa-55780...

x_refsource_MISC

CVSS V3.1

Score:

9.1

Severity:

CRITICAL

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Mar 26, 2019
Vulnerability Reserved
Jan 22, 2019