Lucene search

CVE-2018-4858

🗓️ 09 Jul 2018 19:00:29Reported by siemensType

CVE-2018-4858: Vulnerability in IEC 61850 system configurator & DIGSI

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 7
Tenable Nessus	Siemens Ec Unspecified Vulnerability	8 Nov 201900:00	–	nessus
Tenable Nessus	Siemens IEC 61850 System Configurator, DIGSI 5, DIGSI 4, SICAM PAS/PQS, SICAM PQ Analyzer, and SICAM SCC Improper Access Control (CVE-2018-4858)	7 Feb 202200:00	–	nessus
Cvelist	CVE-2018-4858	9 Jul 201819:00	–	cvelist
NVD	CVE-2018-4858	9 Jul 201819:29	–	nvd
ICS	ICSA-18-317-01 Siemens IEC 61850 System Configurator, DIGSI 5, DIGSI 4, SICAM PAS/PQS, SICAM PQ Analyzer, and SICAM SCC	26 Jun 201800:00	–	ics
Prion	Design/Logic Flaw	9 Jul 201819:29	–	prion
ThreatPost	Siemens Patches Firewall Flaw That Put Operations at Risk	14 Nov 201817:40	–	threatpost

Nvd

Node

siemens ec_61850_system_configurator_firmwareRange<5.80

AND

siemens ec_61850_system_configuratorMatch-

Node

siemens sicam_pq_analyzer_firmwareRange<3.11

AND

siemens sicam_pq_analyzerMatch-

Node

siemens sicam_scc_firmwareMatch-

AND

siemens sicam_sccMatch-

Node

siemens digsi_4_firmwareMatch-

AND

siemens digsi_4Match-

Node

siemens digsi_5_firmwareRange<7.80

AND

siemens digsi_5Match-

Node

siemens sicam_pas/pqsRange<8.11

[
  {
    "product": "IEC 61850 system configurator, DIGSI 5 (affected as IEC 61850 system configurator is incorporated), DIGSI 4, SICAM PAS/PQS, SICAM PQ Analyzer, SICAM SCC",
    "vendor": "Siemens AG",
    "versions": [
      {
        "status": "affected",
        "version": "IEC 61850 system configurator : All versions < V5.80"
      },
      {
        "status": "affected",
        "version": "DIGSI 5 (affected as IEC 61850 system configurator is incorporated) : All versions < V7.80"
      },
      {
        "status": "affected",
        "version": "DIGSI 4 : All versions < V4.93"
      },
      {
        "status": "affected",
        "version": "SICAM PAS/PQS : All versions < V8.11"
      },
      {
        "status": "affected",
        "version": "SICAM PQ Analyzer : All versions < V3.11"
      },
      {
        "status": "affected",
        "version": "SICAM SCC : All versions < V9.02 HF3"
      }
    ]
  }
]

Source	Link
ics-cert	www.ics-cert.us-cert.gov/advisories/ICSA-18-317-01
securityfocus	www.securityfocus.com/bid/105933
cert-portal	www.cert-portal.siemens.com/productcert/pdf/ssa-159860.pdf

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

09 Jul 2018 19:29Current

7.5High risk

Vulners AI Score7.5

CVSS29.3

CVSS37.8

EPSS0.00447

CWE-284