5

CVE-2015-1357

EPSS 0.26%
Veröffentlicht 02.02.2015 15:59:03
Zuletzt bearbeitet 12.04.2025 10:46:40
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

Siemens Ruggedcom WIN51xx devices with firmware before SS4.4.4624.35, WIN52xx devices with firmware before SS4.4.4624.35, WIN70xx devices with firmware before BS4.4.4621.32, and WIN72xx devices with firmware before BS4.4.4621.32 allow context-dependent attackers to discover password hashes by reading (1) files or (2) security logs.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 4

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Siemens ≫ Ruggedcom Firmware Version <= bs4.4.4621.31

Siemens ≫ Ruggedcom Win7000 Version-
Siemens ≫ Ruggedcom Win7200 Version-

Siemens ≫ Ruggedcom Firmware Version <= ss4.4.4624.34

Siemens ≫ Ruggedcom Win5100 Version-
Siemens ≫ Ruggedcom Win5200 Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.26%	0.495

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:P/I:N/A:N

CWE-200 Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

http://www.siemens.com/innovation/pool/de/forschungsfelder/siemens_security_advisory_ssa-753139.pdf

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2015-1357

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2015-1357

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2015-1357

EUVD