CVSS2
Attack Vector
ADJACENT_NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:A/AC:M/Au:N/C:P/I:P/A:P
CVSS3
Attack Vector
ADJACENT
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L
AI Score
Confidence
High
EPSS
Percentile
21.7%
An issue was discovered in Emerson SE4801T0X Redundant Wireless I/O Card V13.3, and SE4801T1X Simplex Wireless I/O Card V13.3. DeltaV Wireless I/O Cards (WIOC) running the firmware available in the DeltaV system, release v13.3, have the SSH (Secure Shell) functionality enabled unnecessarily.
Vendor | Product | Version | CPE |
---|---|---|---|
emerson | se4801t0x_redundant_wireless_i\/o_card_firmware | 13.3 | cpe:2.3:o:emerson:se4801t0x_redundant_wireless_i\/o_card_firmware:13.3:*:*:*:*:*:*:* |
emerson | se4801t0x_redundant_wireless_i\/o_card | - | cpe:2.3:h:emerson:se4801t0x_redundant_wireless_i\/o_card:-:*:*:*:*:*:*:* |
emerson | se4801t1x_simplex_wireless_i\/o_card_firmware | 13.3 | cpe:2.3:o:emerson:se4801t1x_simplex_wireless_i\/o_card_firmware:13.3:*:*:*:*:*:*:* |
emerson | se4801t1x_simplex_wireless_i\/o_card | - | cpe:2.3:h:emerson:se4801t1x_simplex_wireless_i\/o_card:-:*:*:*:*:*:*:* |
[
{
"product": "Emerson DeltaV Wireless I/O Card 13.3",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Emerson DeltaV Wireless I/O Card 13.3"
}
]
}
]
CVSS2
Attack Vector
ADJACENT_NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:A/AC:M/Au:N/C:P/I:P/A:P
CVSS3
Attack Vector
ADJACENT
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L
AI Score
Confidence
High
EPSS
Percentile
21.7%