CVE-2018-11449

2018-06-1500:00:00

CWE-79

siemens

www.cve.org

7.3 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

12.6%

JSON

A vulnerability has been identified in SCALANCE M875 (All versions). An attacker with access to the local file system might obtain passwords for administrative users. Successful exploitation requires read access to files on the local file system. A successful attack could allow an attacker to obtain administrative passwords. At the time of advisory publication no public exploitation of this security vulnerability was known.

CNA Affected

[
  {
    "product": "SCALANCE M875",
    "vendor": "Siemens AG",
    "versions": [
      {
        "status": "affected",
        "version": "SCALANCE M875 All versions"
      }
    ]
  }
]

References

cert-portal.siemens.com/productcert/pdf/ssa-977428.pdf