7.5

CVE-2017-9946

Exploit
A vulnerability has been identified in Siemens APOGEE PXC and TALON TC BACnet Automation Controllers in all versions <V3.5. An attacker with network access to the integrated web server (80/tcp and 443/tcp) could bypass the authentication and download sensitive information from the device.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
SiemensApogee Pxc Firmware Version < 3.5
   SiemensApogee Pxc Version-
SiemensApogee Pxc Modular Firmware Version < 3.5
   SiemensApogee Pxc Modular Version-
SiemensTalon Tc Compact Firmware Version < 3.5
   SiemensTalon Tc Compact Version-
SiemensTalon Tc Modular Firmware Version < 3.5
   SiemensTalon Tc Modular Version-
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 24.81% 0.976
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.5 3.9 3.6
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:P/I:N/A:N
134c704f-9b21-4f2e-91b3-4a467353bcc0 7.5 3.9 3.6
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
CWE-287 Improper Authentication

When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

http://packetstormsecurity.com/files/169544/Siemens-APOGEE-PXC-TALON-TC-Authentication-Bypass.html
Third Party Advisory
Exploit
VDB Entry
http://www.securityfocus.com/bid/101248
Third Party Advisory
Broken Link
VDB Entry
https://cert-portal.siemens.com/productcert/pdf/ssa-148078.pdf
Vendor Advisory
https://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-148078.pdf
Vendor Advisory
Broken Link
https://packetstorm.news/files/id/169544