9.1
CVE-2019-6569
- EPSS 0.48%
- Veröffentlicht 26.03.2019 22:29:00
- Zuletzt bearbeitet 21.11.2024 04:46:43
- Quelle productcert@siemens.com
- Teams Watchlist Login
- Unerledigt Login
The monitor barrier of the affected products insufficiently blocks data from being forwarded over the mirror port into the mirrored network. An attacker could use this behavior to transmit malicious packets to systems in the mirrored network, possibly influencing their configuration and runtime behavior.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Siemens ≫ Scalance X-200 Firmware Version < 5.2.4
Siemens ≫ Scalance X-300 Firmware Version < 4.1.3
Siemens ≫ Scalance Xp-200 Firmware Version < 4.1
Siemens ≫ Scalance Xc-200 Firmware Version < 4.1
Siemens ≫ Scalance Xf-200 Firmware Version < 4.1
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.48% | 0.639 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 9.1 | 3.9 | 5.2 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
|
| nvd@nist.gov | 6.4 | 10 | 4.9 |
AV:N/AC:L/Au:N/C:P/I:N/A:P
|
CWE-440 Expected Behavior Violation
A feature, API, or function does not perform according to its specification.