Lucene search

CVE-2019-19290

🗓️ 10 Mar 2020 20:19:15Reported by siemensType

cve🔗 web.nvd.nist.gov📰️ 3 Media mentions👁 30 Views

Control Center Server (CCS) < V1.5.0 allows authenticated remote attacker to access and download arbitrary files

Reporter	Title	Published	Views	Family All 5
Prion	Path traversal	10 Mar 202020:15	–	prion
Cvelist	CVE-2019-19290	10 Mar 202019:16	–	cvelist
NVD	CVE-2019-19290	10 Mar 202020:15	–	nvd
ICS	Siemens and PKE Control Center Server	13 Apr 202100:00	–	ics
ICS	ICSA-20-070-01_Siemens and PKE SiNVR/SiVMS Video Server (Update B)	13 Apr 202100:00	–	ics

Nvd

Node

siemens sinvr_3_central_control_server

siemens sinvr_3_video_server

[
  {
    "vendor": "Siemens",
    "product": "Control Center Server (CCS)",
    "versions": [
      {
        "version": "All versions < V1.5.0",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  }
]

Source	Link
cert-portal	www.cert-portal.siemens.com/productcert/pdf/ssa-844761.pdf
cert-portal	www.cert-portal.siemens.com/productcert/pdf/ssa-761844.pdf

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

10 Mar 2020 20:15Current

6.1Medium risk

Vulners AI Score6.1

CVSS24

CVSS36.5

EPSS0.00384

CWE-22