Lucene search

[email protected]NVD:CVE-2015-1048

HistoryJan 21, 2015 - 5:59 p.m.

CVE-2015-1048

2015-01-2117:59:02

[email protected]

web.nvd.nist.gov

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

6.8 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

50.6%

JSON

Open redirect vulnerability in the integrated web server on Siemens SIMATIC S7-1200 CPU devices with firmware before 4.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.

Affected configurations

NVD

Node

siemenssimatic_s7_1200_cpu_firmwareRange≤4.0

AND

siemenssimatic_s7_1200_cpu

References

www.siemens.com/innovation/pool/de/forschungsfelder/siemens_security_advisory_ssa-597212.pdf

cert-portal.siemens.com/productcert/pdf/ssa-597212.pdf

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

6.8 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

50.6%

JSON

Related for NVD:CVE-2015-1048

cve1 nessus2 ics1 cvelist1 prion1