CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N
EPSS
Percentile
40.4%
Affected devices do not check the TFTP blocksize correctly. This could allow an authenticated attacker to read from an uninitialized buffer that potentially contains previously allocated data.
Vendor | Product | Version | CPE |
---|---|---|---|
siemens | ruggedcom_rm1224_lte\(4g\)_eu | - | cpe:2.3:h:siemens:ruggedcom_rm1224_lte\(4g\)_eu:-:*:*:*:*:*:*:* |
siemens | ruggedcom_rm1224_lte\(4g\)_eu_firmware | * | cpe:2.3:o:siemens:ruggedcom_rm1224_lte\(4g\)_eu_firmware:*:*:*:*:*:*:*:* |
siemens | ruggedcom_rm1224_lte\(4g\)_nam | - | cpe:2.3:h:siemens:ruggedcom_rm1224_lte\(4g\)_nam:-:*:*:*:*:*:*:* |
siemens | ruggedcom_rm1224_lte\(4g\)_nam_firmware | * | cpe:2.3:o:siemens:ruggedcom_rm1224_lte\(4g\)_nam_firmware:*:*:*:*:*:*:*:* |
siemens | scalance_m804pb | - | cpe:2.3:h:siemens:scalance_m804pb:-:*:*:*:*:*:*:* |
siemens | scalance_m804pb_firmware | * | cpe:2.3:o:siemens:scalance_m804pb_firmware:*:*:*:*:*:*:*:* |
siemens | scalance_m812-1_adsl-router | - | cpe:2.3:h:siemens:scalance_m812-1_adsl-router:-:*:*:*:*:*:*:* |
siemens | scalance_m812-1_adsl-router_firmware | * | cpe:2.3:o:siemens:scalance_m812-1_adsl-router_firmware:*:*:*:*:*:*:*:* |
siemens | scalance_m816-1_adsl-router | - | cpe:2.3:h:siemens:scalance_m816-1_adsl-router:-:*:*:*:*:*:*:* |
siemens | scalance_m816-1_adsl-router_firmware | * | cpe:2.3:o:siemens:scalance_m816-1_adsl-router_firmware:*:*:*:*:*:*:*:* |