Lucene search

[email protected]NVD:CVE-2018-8864

HistoryMay 25, 2018 - 4:29 p.m.

CVE-2018-8864

2018-05-2516:29:00

CWE-311

[email protected]

web.nvd.nist.gov

2.9 Low

CVSS2

Attack Vector

ADJACENT_NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:A/AC:M/Au:N/C:N/I:P/A:N

3.1 Low

CVSS3

Attack Vector

ADJACENT

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

3.8 Low

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

20.5%

JSON

In ATI Systems Emergency Mass Notification Systems (HPSS16, HPSS32, MHPSS, and ALERT4000) devices, a missing encryption of sensitive data vulnerability caused by specially crafted malicious radio transmissions may allow an attacker to remotely trigger false alarms.

Affected configurations

NVD

Node

atisystemhpss16_firmwareMatch-

AND

atisystemhpss16Match-

Node

atisystemhpss32_firmwareMatch-

AND

atisystemhpss32Match-

Node

atisystemmhpss_firmwareMatch-

AND

atisystemmhpssMatch-

Node

atisystemalert4000_firmwareMatch-

AND

atisystemalert4000Match-

References

www.securityfocus.com/bid/103721

ics-cert.us-cert.gov/advisories/ICSA-18-100-01

2.9 Low

CVSS2

Attack Vector

ADJACENT_NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:A/AC:M/Au:N/C:N/I:P/A:N

3.1 Low

CVSS3

Attack Vector

ADJACENT

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

3.8 Low

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

20.5%

JSON

Related for NVD:CVE-2018-8864

prion1 cve1 cvelist1 ics1