mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-08-04 08:44:25 +00:00
"-Synchronized-Data."
This commit is contained in:
CVE Team
parent
d7550ce719
commit
b9b66cce9e
@ -1,12 +1,33 @@
|
||||
{
|
||||
"CVE_data_meta": {
|
||||
"ASSIGNER": "productcert@siemens.com",
|
||||
"ID": "CVE-2019-13939",
|
||||
"STATE": "PUBLIC"
|
||||
},
|
||||
"data_format": "MITRE",
|
||||
"data_version": "4.0",
|
||||
"data_type": "CVE",
|
||||
"data_format": "MITRE",
|
||||
"CVE_data_meta": {
|
||||
"ID": "CVE-2019-13939",
|
||||
"ASSIGNER": "productcert@siemens.com",
|
||||
"STATE": "PUBLIC"
|
||||
},
|
||||
"description": {
|
||||
"description_data": [
|
||||
{
|
||||
"lang": "eng",
|
||||
"value": "A vulnerability has been identified in Capital Embedded AR Classic 431-422 (All versions), Capital Embedded AR Classic R20-11 (All versions < V2303), Nucleus NET (All versions), Nucleus ReadyStart V3 (All versions < V2017.02.3), Nucleus Source Code (All versions). By sending specially crafted DHCP packets to a device where the DHCP client is enabled, an attacker could change the IP address of the device to an invalid value."
|
||||
}
|
||||
]
|
||||
},
|
||||
"problemtype": {
|
||||
"problemtype_data": [
|
||||
{
|
||||
"description": [
|
||||
{
|
||||
"lang": "eng",
|
||||
"value": "CWE-20: Improper Input Validation",
|
||||
"cweId": "CWE-20"
|
||||
}
|
||||
]
|
||||
}
|
||||
]
|
||||
},
|
||||
"affects": {
|
||||
"vendor": {
|
||||
"vendor_data": [
|
||||
@ -15,161 +36,25 @@
|
||||
"product": {
|
||||
"product_data": [
|
||||
{
|
||||
"product_name": "APOGEE MEC/MBC/PXC (P2)",
|
||||
"product_name": "Capital Embedded AR Classic 431-422",
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_value": "All versions < V2.8.2"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "*"
|
||||
}
|
||||
]
|
||||
}
|
||||
},
|
||||
{
|
||||
"product_name": "APOGEE PXC Series (BACnet)",
|
||||
"product_name": "Capital Embedded AR Classic R20-11",
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_value": "All versions < V3.5.3"
|
||||
}
|
||||
]
|
||||
}
|
||||
},
|
||||
{
|
||||
"product_name": "APOGEE PXC Series (P2)",
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_value": "All versions >= V2.8.2 and < V2.8.19"
|
||||
}
|
||||
]
|
||||
}
|
||||
},
|
||||
{
|
||||
"product_name": "Desigo PXC00-E.D",
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_value": "All versions >= V2.3x and < V6.00.327"
|
||||
}
|
||||
]
|
||||
}
|
||||
},
|
||||
{
|
||||
"product_name": "Desigo PXC00-U",
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_value": "All versions >= V2.3x and < V6.00.327"
|
||||
}
|
||||
]
|
||||
}
|
||||
},
|
||||
{
|
||||
"product_name": "Desigo PXC001-E.D",
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_value": "All versions >= V2.3x and < V6.00.327"
|
||||
}
|
||||
]
|
||||
}
|
||||
},
|
||||
{
|
||||
"product_name": "Desigo PXC100-E.D",
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_value": "All versions >= V2.3x and < V6.00.327"
|
||||
}
|
||||
]
|
||||
}
|
||||
},
|
||||
{
|
||||
"product_name": "Desigo PXC12-E.D",
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_value": "All versions >= V2.3x and < V6.00.327"
|
||||
}
|
||||
]
|
||||
}
|
||||
},
|
||||
{
|
||||
"product_name": "Desigo PXC128-U",
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_value": "All versions >= V2.3x and < V6.00.327"
|
||||
}
|
||||
]
|
||||
}
|
||||
},
|
||||
{
|
||||
"product_name": "Desigo PXC200-E.D",
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_value": "All versions >= V2.3x and < V6.00.327"
|
||||
}
|
||||
]
|
||||
}
|
||||
},
|
||||
{
|
||||
"product_name": "Desigo PXC22-E.D",
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_value": "All versions >= V2.3x and < V6.00.327"
|
||||
}
|
||||
]
|
||||
}
|
||||
},
|
||||
{
|
||||
"product_name": "Desigo PXC22.1-E.D",
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_value": "All versions >= V2.3x and < V6.00.327"
|
||||
}
|
||||
]
|
||||
}
|
||||
},
|
||||
{
|
||||
"product_name": "Desigo PXC36.1-E.D",
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_value": "All versions >= V2.3x and < V6.00.327"
|
||||
}
|
||||
]
|
||||
}
|
||||
},
|
||||
{
|
||||
"product_name": "Desigo PXC50-E.D",
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_value": "All versions >= V2.3x and < V6.00.327"
|
||||
}
|
||||
]
|
||||
}
|
||||
},
|
||||
{
|
||||
"product_name": "Desigo PXC64-U",
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_value": "All versions >= V2.3x and < V6.00.327"
|
||||
}
|
||||
]
|
||||
}
|
||||
},
|
||||
{
|
||||
"product_name": "Desigo PXM20-E",
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_value": "All versions >= V2.3x and < V6.00.327"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V2303"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -179,37 +64,20 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions"
|
||||
}
|
||||
]
|
||||
}
|
||||
},
|
||||
{
|
||||
"product_name": "Nucleus RTOS",
|
||||
"product_name": "Nucleus ReadyStart V3",
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_value": "All versions"
|
||||
}
|
||||
]
|
||||
}
|
||||
},
|
||||
{
|
||||
"product_name": "Nucleus ReadyStart for ARM, MIPS, and PPC",
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_value": "All versions < V2017.02.2 with patch \"Nucleus 2017.02.02 Nucleus NET Patch\""
|
||||
}
|
||||
]
|
||||
}
|
||||
},
|
||||
{
|
||||
"product_name": "Nucleus SafetyCert",
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_value": "All versions"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V2017.02.3"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -219,37 +87,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_value": "All versions"
|
||||
}
|
||||
]
|
||||
}
|
||||
},
|
||||
{
|
||||
"product_name": "SIMOTICS CONNECT 400",
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_value": "All versions < V0.3.0.330"
|
||||
}
|
||||
]
|
||||
}
|
||||
},
|
||||
{
|
||||
"product_name": "TALON TC Series (BACnet)",
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_value": "All versions < V3.5.3"
|
||||
}
|
||||
]
|
||||
}
|
||||
},
|
||||
{
|
||||
"product_name": "VSTAR",
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_value": "All versions"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "*"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -260,42 +100,42 @@
|
||||
]
|
||||
}
|
||||
},
|
||||
"problemtype": {
|
||||
"problemtype_data": [
|
||||
{
|
||||
"description": [
|
||||
{
|
||||
"lang": "eng",
|
||||
"value": "CWE-840: Business Logic Errors"
|
||||
}
|
||||
]
|
||||
}
|
||||
]
|
||||
},
|
||||
"description": {
|
||||
"description_data": [
|
||||
{
|
||||
"lang": "eng",
|
||||
"value": "A vulnerability has been identified in APOGEE MEC/MBC/PXC (P2) (All versions < V2.8.2), APOGEE PXC Series (BACnet) (All versions < V3.5.3), APOGEE PXC Series (P2) (All versions >= V2.8.2 and < V2.8.19), Desigo PXC00-E.D (All versions >= V2.3x and < V6.00.327), Desigo PXC00-U (All versions >= V2.3x and < V6.00.327), Desigo PXC001-E.D (All versions >= V2.3x and < V6.00.327), Desigo PXC100-E.D (All versions >= V2.3x and < V6.00.327), Desigo PXC12-E.D (All versions >= V2.3x and < V6.00.327), Desigo PXC128-U (All versions >= V2.3x and < V6.00.327), Desigo PXC200-E.D (All versions >= V2.3x and < V6.00.327), Desigo PXC22-E.D (All versions >= V2.3x and < V6.00.327), Desigo PXC22.1-E.D (All versions >= V2.3x and < V6.00.327), Desigo PXC36.1-E.D (All versions >= V2.3x and < V6.00.327), Desigo PXC50-E.D (All versions >= V2.3x and < V6.00.327), Desigo PXC64-U (All versions >= V2.3x and < V6.00.327), Desigo PXM20-E (All versions >= V2.3x and < V6.00.327), Nucleus NET (All versions), Nucleus RTOS (All versions), Nucleus ReadyStart for ARM, MIPS, and PPC (All versions < V2017.02.2 with patch \"Nucleus 2017.02.02 Nucleus NET Patch\"), Nucleus SafetyCert (All versions), Nucleus Source Code (All versions), SIMOTICS CONNECT 400 (All versions < V0.3.0.330), TALON TC Series (BACnet) (All versions < V3.5.3), VSTAR (All versions). By sending specially crafted DHCP packets to a device where the DHCP client is enabled, an attacker could change the IP address of the device to an invalid value. The vulnerability could affect availability and integrity of the device. Adjacent network access is required, but no authentication and no user interaction is needed to conduct an attack."
|
||||
}
|
||||
]
|
||||
},
|
||||
"references": {
|
||||
"reference_data": [
|
||||
{
|
||||
"refsource": "MISC",
|
||||
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-434032.pdf",
|
||||
"refsource": "MISC",
|
||||
"name": "https://cert-portal.siemens.com/productcert/pdf/ssa-434032.pdf"
|
||||
},
|
||||
{
|
||||
"refsource": "CONFIRM",
|
||||
"name": "https://cert-portal.siemens.com/productcert/pdf/ssa-162506.pdf",
|
||||
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-162506.pdf"
|
||||
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-162506.pdf",
|
||||
"refsource": "MISC",
|
||||
"name": "https://cert-portal.siemens.com/productcert/pdf/ssa-162506.pdf"
|
||||
},
|
||||
{
|
||||
"url": "https://us-cert.cisa.gov/ics/advisories/icsa-20-105-06",
|
||||
"refsource": "MISC",
|
||||
"name": "https://us-cert.cisa.gov/ics/advisories/icsa-20-105-06",
|
||||
"url": "https://us-cert.cisa.gov/ics/advisories/icsa-20-105-06"
|
||||
"name": "https://us-cert.cisa.gov/ics/advisories/icsa-20-105-06"
|
||||
},
|
||||
{
|
||||
"url": "https://cert-portal.siemens.com/productcert/html/ssa-434032.html",
|
||||
"refsource": "MISC",
|
||||
"name": "https://cert-portal.siemens.com/productcert/html/ssa-434032.html"
|
||||
},
|
||||
{
|
||||
"url": "https://cert-portal.siemens.com/productcert/html/ssa-162506.html",
|
||||
"refsource": "MISC",
|
||||
"name": "https://cert-portal.siemens.com/productcert/html/ssa-162506.html"
|
||||
}
|
||||
]
|
||||
},
|
||||
"impact": {
|
||||
"cvss": [
|
||||
{
|
||||
"version": "3.1",
|
||||
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H/E:P/RL:O/RC:C",
|
||||
"baseScore": 7.1,
|
||||
"baseSeverity": "HIGH"
|
||||
}
|
||||
]
|
||||
}
|
||||
|
||||
@ -1,12 +1,33 @@
|
||||
{
|
||||
"CVE_data_meta": {
|
||||
"ASSIGNER": "productcert@siemens.com",
|
||||
"ID": "CVE-2021-25663",
|
||||
"STATE": "PUBLIC"
|
||||
},
|
||||
"data_format": "MITRE",
|
||||
"data_version": "4.0",
|
||||
"data_type": "CVE",
|
||||
"data_format": "MITRE",
|
||||
"CVE_data_meta": {
|
||||
"ID": "CVE-2021-25663",
|
||||
"ASSIGNER": "productcert@siemens.com",
|
||||
"STATE": "PUBLIC"
|
||||
},
|
||||
"description": {
|
||||
"description_data": [
|
||||
{
|
||||
"lang": "eng",
|
||||
"value": "A vulnerability has been identified in Capital Embedded AR Classic 431-422 (All versions), Capital Embedded AR Classic R20-11 (All versions < V2303), Nucleus NET (All versions), Nucleus ReadyStart V3 (All versions < V2017.02.4), Nucleus ReadyStart V4 (All versions < V4.1.0), Nucleus Source Code (All versions including affected IPv6 stack). The function that processes IPv6 headers does not check the lengths of extension header options, allowing attackers to put this function into an infinite loop with crafted length values."
|
||||
}
|
||||
]
|
||||
},
|
||||
"problemtype": {
|
||||
"problemtype_data": [
|
||||
{
|
||||
"description": [
|
||||
{
|
||||
"lang": "eng",
|
||||
"value": "CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop')",
|
||||
"cweId": "CWE-835"
|
||||
}
|
||||
]
|
||||
}
|
||||
]
|
||||
},
|
||||
"affects": {
|
||||
"vendor": {
|
||||
"vendor_data": [
|
||||
@ -15,11 +36,25 @@
|
||||
"product": {
|
||||
"product_data": [
|
||||
{
|
||||
"product_name": "Capital VSTAR",
|
||||
"product_name": "Capital Embedded AR Classic 431-422",
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_value": "Versions including affected IPv6 stack"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "*"
|
||||
}
|
||||
]
|
||||
}
|
||||
},
|
||||
{
|
||||
"product_name": "Capital Embedded AR Classic R20-11",
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V2303"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -29,6 +64,7 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions"
|
||||
}
|
||||
]
|
||||
@ -39,7 +75,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_value": "All versions < V2017.02.4"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V2017.02.4"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -49,7 +87,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_value": "All versions < V4.1.0"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.1.0"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -59,7 +99,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_value": "Versions including affected IPv6 stack"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "*"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -70,37 +112,32 @@
|
||||
]
|
||||
}
|
||||
},
|
||||
"problemtype": {
|
||||
"problemtype_data": [
|
||||
{
|
||||
"description": [
|
||||
{
|
||||
"lang": "eng",
|
||||
"value": "CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop')"
|
||||
}
|
||||
]
|
||||
}
|
||||
]
|
||||
},
|
||||
"description": {
|
||||
"description_data": [
|
||||
{
|
||||
"lang": "eng",
|
||||
"value": "A vulnerability has been identified in Capital VSTAR (Versions including affected IPv6 stack), Nucleus NET (All versions), Nucleus ReadyStart V3 (All versions < V2017.02.4), Nucleus ReadyStart V4 (All versions < V4.1.0), Nucleus Source Code (Versions including affected IPv6 stack). The function that processes IPv6 headers does not check the lengths of extension header options, allowing attackers to put this function into an infinite loop with crafted length values."
|
||||
}
|
||||
]
|
||||
},
|
||||
"references": {
|
||||
"reference_data": [
|
||||
{
|
||||
"refsource": "MISC",
|
||||
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-248289.pdf",
|
||||
"refsource": "MISC",
|
||||
"name": "https://cert-portal.siemens.com/productcert/pdf/ssa-248289.pdf"
|
||||
},
|
||||
{
|
||||
"refsource": "CONFIRM",
|
||||
"name": "https://us-cert.cisa.gov/ics/advisories/icsa-21-103-05",
|
||||
"url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-103-05"
|
||||
"url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-103-05",
|
||||
"refsource": "MISC",
|
||||
"name": "https://us-cert.cisa.gov/ics/advisories/icsa-21-103-05"
|
||||
},
|
||||
{
|
||||
"url": "https://cert-portal.siemens.com/productcert/html/ssa-248289.html",
|
||||
"refsource": "MISC",
|
||||
"name": "https://cert-portal.siemens.com/productcert/html/ssa-248289.html"
|
||||
}
|
||||
]
|
||||
},
|
||||
"impact": {
|
||||
"cvss": [
|
||||
{
|
||||
"version": "3.1",
|
||||
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
|
||||
"baseScore": 7.5,
|
||||
"baseSeverity": "HIGH"
|
||||
}
|
||||
]
|
||||
}
|
||||
|
||||
@ -1,12 +1,33 @@
|
||||
{
|
||||
"CVE_data_meta": {
|
||||
"ASSIGNER": "productcert@siemens.com",
|
||||
"ID": "CVE-2021-25664",
|
||||
"STATE": "PUBLIC"
|
||||
},
|
||||
"data_format": "MITRE",
|
||||
"data_version": "4.0",
|
||||
"data_type": "CVE",
|
||||
"data_format": "MITRE",
|
||||
"CVE_data_meta": {
|
||||
"ID": "CVE-2021-25664",
|
||||
"ASSIGNER": "productcert@siemens.com",
|
||||
"STATE": "PUBLIC"
|
||||
},
|
||||
"description": {
|
||||
"description_data": [
|
||||
{
|
||||
"lang": "eng",
|
||||
"value": "A vulnerability has been identified in Capital Embedded AR Classic 431-422 (All versions), Capital Embedded AR Classic R20-11 (All versions < V2303), Nucleus NET (All versions), Nucleus ReadyStart V3 (All versions < V2017.02.4), Nucleus ReadyStart V4 (All versions < V4.1.0), Nucleus Source Code (All versions including affected IPv6 stack). The function that processes the Hop-by-Hop extension header in IPv6 packets and its options lacks any checks against the length field of the header, allowing attackers to put the function into an infinite loop by supplying arbitrary length values."
|
||||
}
|
||||
]
|
||||
},
|
||||
"problemtype": {
|
||||
"problemtype_data": [
|
||||
{
|
||||
"description": [
|
||||
{
|
||||
"lang": "eng",
|
||||
"value": "CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop')",
|
||||
"cweId": "CWE-835"
|
||||
}
|
||||
]
|
||||
}
|
||||
]
|
||||
},
|
||||
"affects": {
|
||||
"vendor": {
|
||||
"vendor_data": [
|
||||
@ -15,11 +36,25 @@
|
||||
"product": {
|
||||
"product_data": [
|
||||
{
|
||||
"product_name": "Capital VSTAR",
|
||||
"product_name": "Capital Embedded AR Classic 431-422",
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_value": "Versions including affected IPv6 stack"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "*"
|
||||
}
|
||||
]
|
||||
}
|
||||
},
|
||||
{
|
||||
"product_name": "Capital Embedded AR Classic R20-11",
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V2303"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -29,6 +64,7 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions"
|
||||
}
|
||||
]
|
||||
@ -39,7 +75,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_value": "All versions < V2017.02.4"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V2017.02.4"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -49,7 +87,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_value": "All versions < V4.1.0"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.1.0"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -59,7 +99,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_value": "Versions including affected IPv6 stack"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "*"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -70,37 +112,32 @@
|
||||
]
|
||||
}
|
||||
},
|
||||
"problemtype": {
|
||||
"problemtype_data": [
|
||||
{
|
||||
"description": [
|
||||
{
|
||||
"lang": "eng",
|
||||
"value": "CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop')"
|
||||
}
|
||||
]
|
||||
}
|
||||
]
|
||||
},
|
||||
"description": {
|
||||
"description_data": [
|
||||
{
|
||||
"lang": "eng",
|
||||
"value": "A vulnerability has been identified in Capital VSTAR (Versions including affected IPv6 stack), Nucleus NET (All versions), Nucleus ReadyStart V3 (All versions < V2017.02.4), Nucleus ReadyStart V4 (All versions < V4.1.0), Nucleus Source Code (Versions including affected IPv6 stack). The function that processes the Hop-by-Hop extension header in IPv6 packets and its options lacks any checks against the length field of the header, allowing attackers to put the function into an infinite loop by supplying arbitrary length values."
|
||||
}
|
||||
]
|
||||
},
|
||||
"references": {
|
||||
"reference_data": [
|
||||
{
|
||||
"refsource": "MISC",
|
||||
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-248289.pdf",
|
||||
"refsource": "MISC",
|
||||
"name": "https://cert-portal.siemens.com/productcert/pdf/ssa-248289.pdf"
|
||||
},
|
||||
{
|
||||
"url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-103-05",
|
||||
"refsource": "MISC",
|
||||
"name": "https://us-cert.cisa.gov/ics/advisories/icsa-21-103-05",
|
||||
"url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-103-05"
|
||||
"name": "https://us-cert.cisa.gov/ics/advisories/icsa-21-103-05"
|
||||
},
|
||||
{
|
||||
"url": "https://cert-portal.siemens.com/productcert/html/ssa-248289.html",
|
||||
"refsource": "MISC",
|
||||
"name": "https://cert-portal.siemens.com/productcert/html/ssa-248289.html"
|
||||
}
|
||||
]
|
||||
},
|
||||
"impact": {
|
||||
"cvss": [
|
||||
{
|
||||
"version": "3.1",
|
||||
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
|
||||
"baseScore": 7.5,
|
||||
"baseSeverity": "HIGH"
|
||||
}
|
||||
]
|
||||
}
|
||||
|
||||
File diff suppressed because it is too large
Load Diff
File diff suppressed because it is too large
Load Diff
File diff suppressed because it is too large
Load Diff
@ -11,7 +11,7 @@
|
||||
"description_data": [
|
||||
{
|
||||
"lang": "eng",
|
||||
"value": "A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU, RUGGEDCOM RM1224 LTE(4G) NAM, SCALANCE M804PB, SCALANCE M812-1 ADSL-Router (Annex A), SCALANCE M812-1 ADSL-Router (Annex B), SCALANCE M816-1 ADSL-Router (Annex A), SCALANCE M816-1 ADSL-Router (Annex B), SCALANCE M826-2 SHDSL-Router, SCALANCE M874-2, SCALANCE M874-3, SCALANCE M876-3 (EVDO), SCALANCE M876-3 (ROK), SCALANCE M876-4, SCALANCE M876-4 (EU), SCALANCE M876-4 (NAM), SCALANCE MUM853-1 (EU), SCALANCE MUM856-1 (EU), SCALANCE MUM856-1 (RoW), SCALANCE S615, SCALANCE S615 EEC, SCALANCE XB205-3 (SC, PN), SCALANCE XB205-3 (ST, E/IP), SCALANCE XB205-3 (ST, E/IP), SCALANCE XB205-3 (ST, PN), SCALANCE XB205-3LD (SC, E/IP), SCALANCE XB205-3LD (SC, PN), SCALANCE XB208 (E/IP), SCALANCE XB208 (PN), SCALANCE XB213-3 (SC, E/IP), SCALANCE XB213-3 (SC, PN), SCALANCE XB213-3 (ST, E/IP), SCALANCE XB213-3 (ST, PN), SCALANCE XB213-3LD (SC, E/IP), SCALANCE XB213-3LD (SC, PN), SCALANCE XB216 (E/IP), SCALANCE XB216 (PN), SCALANCE XC206-2 (SC), SCALANCE XC206-2 (ST/BFOC), SCALANCE XC206-2G PoE, SCALANCE XC206-2G PoE (54 V DC), SCALANCE XC206-2G PoE EEC (54 V DC), SCALANCE XC206-2SFP, SCALANCE XC206-2SFP EEC, SCALANCE XC206-2SFP G, SCALANCE XC206-2SFP G (EIP DEF.), SCALANCE XC206-2SFP G EEC, SCALANCE XC208, SCALANCE XC208EEC, SCALANCE XC208G, SCALANCE XC208G (EIP def.), SCALANCE XC208G EEC, SCALANCE XC208G PoE, SCALANCE XC208G PoE (54 V DC), SCALANCE XC216, SCALANCE XC216-3G PoE, SCALANCE XC216-3G PoE (54 V DC), SCALANCE XC216-4C, SCALANCE XC216-4C G, SCALANCE XC216-4C G (EIP Def.), SCALANCE XC216-4C G EEC, SCALANCE XC216EEC, SCALANCE XC224, SCALANCE XC224-4C G, SCALANCE XC224-4C G (EIP Def.), SCALANCE XC224-4C G EEC, SCALANCE XF204, SCALANCE XF204 DNA, SCALANCE XF204-2BA, SCALANCE XF204-2BA DNA, SCALANCE XP208, SCALANCE XP208 (Ethernet/IP), SCALANCE XP208EEC, SCALANCE XP208PoE EEC, SCALANCE XP216, SCALANCE XP216 (Ethernet/IP), SCALANCE XP216EEC, SCALANCE XP216POE EEC, SCALANCE XR324WG (24 x FE, AC 230V), SCALANCE XR324WG (24 X FE, DC 24V), SCALANCE XR326-2C PoE WG, SCALANCE XR326-2C PoE WG (without UL), SCALANCE XR328-4C WG (24XFE, 4XGE, 24V), SCALANCE XR328-4C WG (24xFE, 4xGE,DC24V), SCALANCE XR328-4C WG (24xFE,4xGE,AC230V), SCALANCE XR328-4C WG (24xFE,4xGE,AC230V), SCALANCE XR328-4C WG (28xGE, AC 230V), SCALANCE XR328-4C WG (28xGE, DC 24V), SIPLUS NET SCALANCE XC206-2, SIPLUS NET SCALANCE XC206-2SFP, SIPLUS NET SCALANCE XC208, SIPLUS NET SCALANCE XC216-4C. Affected devices do not properly validate the authentication when performing certain modifications in the web interface allowing an authenticated attacker to influence the user interface configured by an administrator."
|
||||
"value": "Affected devices do not properly validate the authentication when performing certain modifications in the web interface allowing an authenticated attacker to influence the user interface configured by an administrator."
|
||||
}
|
||||
]
|
||||
},
|
||||
@ -255,13 +255,86 @@
|
||||
]
|
||||
}
|
||||
},
|
||||
{
|
||||
"product_name": "SCALANCE SC622-2C",
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V3.1"
|
||||
}
|
||||
]
|
||||
}
|
||||
},
|
||||
{
|
||||
"product_name": "SCALANCE SC626-2C",
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V3.1"
|
||||
}
|
||||
]
|
||||
}
|
||||
},
|
||||
{
|
||||
"product_name": "SCALANCE SC632-2C",
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V3.1"
|
||||
}
|
||||
]
|
||||
}
|
||||
},
|
||||
{
|
||||
"product_name": "SCALANCE SC636-2C",
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V3.1"
|
||||
}
|
||||
]
|
||||
}
|
||||
},
|
||||
{
|
||||
"product_name": "SCALANCE SC642-2C",
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V3.1"
|
||||
}
|
||||
]
|
||||
}
|
||||
},
|
||||
{
|
||||
"product_name": "SCALANCE SC646-2C",
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V3.1"
|
||||
}
|
||||
]
|
||||
}
|
||||
},
|
||||
{
|
||||
"product_name": "SCALANCE XB205-3 (SC, PN)",
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -271,12 +344,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
},
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -286,8 +356,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -297,8 +368,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -308,8 +380,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -319,8 +392,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -330,8 +404,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -341,8 +416,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -352,8 +428,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -363,8 +440,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -374,8 +452,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -385,8 +464,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -396,8 +476,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -407,8 +488,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -418,8 +500,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -429,8 +512,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -440,8 +524,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -451,8 +536,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -462,8 +548,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -473,8 +560,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -484,8 +572,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -495,8 +584,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -506,8 +596,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -517,8 +608,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -528,8 +620,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -539,8 +632,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -550,8 +644,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -561,8 +656,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -572,8 +668,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -583,8 +680,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -594,8 +692,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -605,8 +704,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -616,8 +716,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -627,8 +728,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -638,8 +740,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -649,8 +752,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -660,8 +764,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -671,8 +776,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -682,8 +788,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -693,8 +800,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -704,8 +812,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -715,8 +824,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -726,8 +836,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -737,8 +848,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -748,8 +860,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -759,8 +872,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -770,8 +884,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -781,8 +896,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -792,8 +908,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -803,8 +920,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -814,8 +932,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -825,8 +944,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -836,8 +956,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -847,8 +968,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -858,8 +980,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -869,8 +992,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -880,8 +1004,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -891,8 +1016,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -902,8 +1028,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -913,8 +1040,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -924,8 +1052,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -935,8 +1064,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -946,12 +1076,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
},
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -961,8 +1088,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -972,8 +1100,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -983,8 +1112,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -994,8 +1124,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -1005,8 +1136,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -1016,8 +1148,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -1039,6 +1172,21 @@
|
||||
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-180704.pdf",
|
||||
"refsource": "MISC",
|
||||
"name": "https://cert-portal.siemens.com/productcert/pdf/ssa-180704.pdf"
|
||||
},
|
||||
{
|
||||
"url": "https://cert-portal.siemens.com/productcert/html/ssa-699386.html",
|
||||
"refsource": "MISC",
|
||||
"name": "https://cert-portal.siemens.com/productcert/html/ssa-699386.html"
|
||||
},
|
||||
{
|
||||
"url": "https://cert-portal.siemens.com/productcert/html/ssa-180704.html",
|
||||
"refsource": "MISC",
|
||||
"name": "https://cert-portal.siemens.com/productcert/html/ssa-180704.html"
|
||||
},
|
||||
{
|
||||
"url": "https://cert-portal.siemens.com/productcert/html/ssa-602936.html",
|
||||
"refsource": "MISC",
|
||||
"name": "https://cert-portal.siemens.com/productcert/html/ssa-602936.html"
|
||||
}
|
||||
]
|
||||
},
|
||||
|
||||
@ -11,7 +11,7 @@
|
||||
"description_data": [
|
||||
{
|
||||
"lang": "eng",
|
||||
"value": "A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU, RUGGEDCOM RM1224 LTE(4G) NAM, SCALANCE M804PB, SCALANCE M812-1 ADSL-Router (Annex A), SCALANCE M812-1 ADSL-Router (Annex B), SCALANCE M816-1 ADSL-Router (Annex A), SCALANCE M816-1 ADSL-Router (Annex B), SCALANCE M826-2 SHDSL-Router, SCALANCE M874-2, SCALANCE M874-3, SCALANCE M876-3 (EVDO), SCALANCE M876-3 (ROK), SCALANCE M876-4, SCALANCE M876-4 (EU), SCALANCE M876-4 (NAM), SCALANCE MUM853-1 (EU), SCALANCE MUM856-1 (EU), SCALANCE MUM856-1 (RoW), SCALANCE S615, SCALANCE S615 EEC, SCALANCE XB205-3 (SC, PN), SCALANCE XB205-3 (ST, E/IP), SCALANCE XB205-3 (ST, E/IP), SCALANCE XB205-3 (ST, PN), SCALANCE XB205-3LD (SC, E/IP), SCALANCE XB205-3LD (SC, PN), SCALANCE XB208 (E/IP), SCALANCE XB208 (PN), SCALANCE XB213-3 (SC, E/IP), SCALANCE XB213-3 (SC, PN), SCALANCE XB213-3 (ST, E/IP), SCALANCE XB213-3 (ST, PN), SCALANCE XB213-3LD (SC, E/IP), SCALANCE XB213-3LD (SC, PN), SCALANCE XB216 (E/IP), SCALANCE XB216 (PN), SCALANCE XC206-2 (SC), SCALANCE XC206-2 (ST/BFOC), SCALANCE XC206-2G PoE, SCALANCE XC206-2G PoE (54 V DC), SCALANCE XC206-2G PoE EEC (54 V DC), SCALANCE XC206-2SFP, SCALANCE XC206-2SFP EEC, SCALANCE XC206-2SFP G, SCALANCE XC206-2SFP G (EIP DEF.), SCALANCE XC206-2SFP G EEC, SCALANCE XC208, SCALANCE XC208EEC, SCALANCE XC208G, SCALANCE XC208G (EIP def.), SCALANCE XC208G EEC, SCALANCE XC208G PoE, SCALANCE XC208G PoE (54 V DC), SCALANCE XC216, SCALANCE XC216-3G PoE, SCALANCE XC216-3G PoE (54 V DC), SCALANCE XC216-4C, SCALANCE XC216-4C G, SCALANCE XC216-4C G (EIP Def.), SCALANCE XC216-4C G EEC, SCALANCE XC216EEC, SCALANCE XC224, SCALANCE XC224-4C G, SCALANCE XC224-4C G (EIP Def.), SCALANCE XC224-4C G EEC, SCALANCE XF204, SCALANCE XF204 DNA, SCALANCE XF204-2BA, SCALANCE XF204-2BA DNA, SCALANCE XP208, SCALANCE XP208 (Ethernet/IP), SCALANCE XP208EEC, SCALANCE XP208PoE EEC, SCALANCE XP216, SCALANCE XP216 (Ethernet/IP), SCALANCE XP216EEC, SCALANCE XP216POE EEC, SCALANCE XR324WG (24 x FE, AC 230V), SCALANCE XR324WG (24 X FE, DC 24V), SCALANCE XR326-2C PoE WG, SCALANCE XR326-2C PoE WG (without UL), SCALANCE XR328-4C WG (24XFE, 4XGE, 24V), SCALANCE XR328-4C WG (24xFE, 4xGE,DC24V), SCALANCE XR328-4C WG (24xFE,4xGE,AC230V), SCALANCE XR328-4C WG (24xFE,4xGE,AC230V), SCALANCE XR328-4C WG (28xGE, AC 230V), SCALANCE XR328-4C WG (28xGE, DC 24V), SIPLUS NET SCALANCE XC206-2, SIPLUS NET SCALANCE XC206-2SFP, SIPLUS NET SCALANCE XC208, SIPLUS NET SCALANCE XC216-4C. Affected devices do not properly validate the length of inputs when performing certain configuration changes in the web interface allowing an authenticated attacker to cause a denial of service condition. The device needs to be restarted for the web interface to become available again."
|
||||
"value": "Affected devices do not properly validate the length of inputs when performing certain configuration changes in the web interface allowing an authenticated attacker to cause a denial of service condition. The device needs to be restarted for the web interface to become available again."
|
||||
}
|
||||
]
|
||||
},
|
||||
@ -255,13 +255,86 @@
|
||||
]
|
||||
}
|
||||
},
|
||||
{
|
||||
"product_name": "SCALANCE SC622-2C",
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "*"
|
||||
}
|
||||
]
|
||||
}
|
||||
},
|
||||
{
|
||||
"product_name": "SCALANCE SC626-2C",
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "*"
|
||||
}
|
||||
]
|
||||
}
|
||||
},
|
||||
{
|
||||
"product_name": "SCALANCE SC632-2C",
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "*"
|
||||
}
|
||||
]
|
||||
}
|
||||
},
|
||||
{
|
||||
"product_name": "SCALANCE SC636-2C",
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "*"
|
||||
}
|
||||
]
|
||||
}
|
||||
},
|
||||
{
|
||||
"product_name": "SCALANCE SC642-2C",
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "*"
|
||||
}
|
||||
]
|
||||
}
|
||||
},
|
||||
{
|
||||
"product_name": "SCALANCE SC646-2C",
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "*"
|
||||
}
|
||||
]
|
||||
}
|
||||
},
|
||||
{
|
||||
"product_name": "SCALANCE XB205-3 (SC, PN)",
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -271,12 +344,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
},
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -286,8 +356,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -297,8 +368,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -308,8 +380,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -319,8 +392,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -330,8 +404,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -341,8 +416,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -352,8 +428,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -363,8 +440,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -374,8 +452,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -385,8 +464,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -396,8 +476,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -407,8 +488,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -418,8 +500,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -429,8 +512,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -440,8 +524,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -451,8 +536,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -462,8 +548,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -473,8 +560,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -484,8 +572,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -495,8 +584,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -506,8 +596,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -517,8 +608,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -528,8 +620,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -539,8 +632,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -550,8 +644,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -561,8 +656,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -572,8 +668,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -583,8 +680,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -594,8 +692,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -605,8 +704,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -616,8 +716,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -627,8 +728,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -638,8 +740,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -649,8 +752,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -660,8 +764,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -671,8 +776,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -682,8 +788,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -693,8 +800,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -704,8 +812,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -715,8 +824,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -726,8 +836,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -737,8 +848,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -748,8 +860,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -759,8 +872,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -770,8 +884,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -781,8 +896,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -792,8 +908,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -803,8 +920,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -814,8 +932,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -825,8 +944,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -836,8 +956,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -847,8 +968,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -858,8 +980,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -869,8 +992,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -880,8 +1004,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -891,8 +1016,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -902,8 +1028,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -913,8 +1040,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -924,8 +1052,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -935,8 +1064,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -946,12 +1076,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
},
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -961,8 +1088,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -972,8 +1100,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -983,8 +1112,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -994,8 +1124,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -1005,8 +1136,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -1016,8 +1148,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.5"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -1039,6 +1172,21 @@
|
||||
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-180704.pdf",
|
||||
"refsource": "MISC",
|
||||
"name": "https://cert-portal.siemens.com/productcert/pdf/ssa-180704.pdf"
|
||||
},
|
||||
{
|
||||
"url": "https://cert-portal.siemens.com/productcert/html/ssa-699386.html",
|
||||
"refsource": "MISC",
|
||||
"name": "https://cert-portal.siemens.com/productcert/html/ssa-699386.html"
|
||||
},
|
||||
{
|
||||
"url": "https://cert-portal.siemens.com/productcert/html/ssa-180704.html",
|
||||
"refsource": "MISC",
|
||||
"name": "https://cert-portal.siemens.com/productcert/html/ssa-180704.html"
|
||||
},
|
||||
{
|
||||
"url": "https://cert-portal.siemens.com/productcert/html/ssa-602936.html",
|
||||
"refsource": "MISC",
|
||||
"name": "https://cert-portal.siemens.com/productcert/html/ssa-602936.html"
|
||||
}
|
||||
]
|
||||
},
|
||||
|
||||
File diff suppressed because it is too large
Load Diff
File diff suppressed because it is too large
Load Diff
@ -11,7 +11,7 @@
|
||||
"description_data": [
|
||||
{
|
||||
"lang": "eng",
|
||||
"value": "A vulnerability has been identified in Opcenter Quality (All versions), SIMATIC PCS neo (All versions < V4.1), SINUMERIK Integrate RunMyHMI\u00a0/Automotive (All versions), Totally Integrated Automation Portal (TIA Portal) V14 (All versions), Totally Integrated Automation Portal (TIA Portal) V15.1 (All versions), Totally Integrated Automation Portal (TIA Portal) V16 (All versions), Totally Integrated Automation Portal (TIA Portal) V17 (All versions < V17 Update 7), Totally Integrated Automation Portal (TIA Portal) V18 (All versions < V18 Update 3). When accessing the UMC Web-UI from affected products, UMC uses an overly permissive CORS policy. This could allow an attacker to trick a legitimate user to trigger unwanted behavior."
|
||||
"value": "A vulnerability has been identified in Opcenter Quality (All versions < V2312), SIMATIC PCS neo (All versions < V4.1), SINEC NMS (All versions < V2.0 SP1), SINUMERIK Integrate RunMyHMI\u00a0/Automotive (All versions), Totally Integrated Automation Portal (TIA Portal) V14 (All versions), Totally Integrated Automation Portal (TIA Portal) V15.1 (All versions), Totally Integrated Automation Portal (TIA Portal) V16 (All versions), Totally Integrated Automation Portal (TIA Portal) V17 (All versions < V17 Update 7), Totally Integrated Automation Portal (TIA Portal) V18 (All versions < V18 Update 3). When accessing the UMC Web-UI from affected products, UMC uses an overly permissive CORS policy. This could allow an attacker to trick a legitimate user to trigger unwanted behavior."
|
||||
}
|
||||
]
|
||||
},
|
||||
@ -40,8 +40,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V2312"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -51,8 +52,21 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.1"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.1"
|
||||
}
|
||||
]
|
||||
}
|
||||
},
|
||||
{
|
||||
"product_name": "SINEC NMS",
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V2.0 SP1"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -73,8 +87,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "*"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -84,8 +99,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "*"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -95,8 +111,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "*"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -106,8 +123,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V17 Update 7"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V17 Update 7"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -117,8 +135,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V18 Update 3"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V18 Update 3"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -135,6 +154,11 @@
|
||||
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-999588.pdf",
|
||||
"refsource": "MISC",
|
||||
"name": "https://cert-portal.siemens.com/productcert/pdf/ssa-999588.pdf"
|
||||
},
|
||||
{
|
||||
"url": "https://cert-portal.siemens.com/productcert/html/ssa-999588.html",
|
||||
"refsource": "MISC",
|
||||
"name": "https://cert-portal.siemens.com/productcert/html/ssa-999588.html"
|
||||
}
|
||||
]
|
||||
},
|
||||
|
||||
@ -11,7 +11,7 @@
|
||||
"description_data": [
|
||||
{
|
||||
"lang": "eng",
|
||||
"value": "A vulnerability has been identified in Opcenter Quality (All versions), SIMATIC PCS neo (All versions < V4.1), SINUMERIK Integrate RunMyHMI\u00a0/Automotive (All versions), Totally Integrated Automation Portal (TIA Portal) V14 (All versions), Totally Integrated Automation Portal (TIA Portal) V15.1 (All versions), Totally Integrated Automation Portal (TIA Portal) V16 (All versions), Totally Integrated Automation Portal (TIA Portal) V17 (All versions < V17 Update 7), Totally Integrated Automation Portal (TIA Portal) V18 (All versions < V18 Update 3). A reflected cross-site scripting (XSS) vulnerability exists in the web interface of the affected applications that could allow an attacker to inject arbitrary JavaScript code. The code could be potentially executed later by another (possibly privileged) user."
|
||||
"value": "A vulnerability has been identified in Opcenter Quality (All versions < V2312), SIMATIC PCS neo (All versions < V4.1), SINEC NMS (All versions < V2.0 SP1), SINUMERIK Integrate RunMyHMI\u00a0/Automotive (All versions), Totally Integrated Automation Portal (TIA Portal) V14 (All versions), Totally Integrated Automation Portal (TIA Portal) V15.1 (All versions), Totally Integrated Automation Portal (TIA Portal) V16 (All versions), Totally Integrated Automation Portal (TIA Portal) V17 (All versions < V17 Update 7), Totally Integrated Automation Portal (TIA Portal) V18 (All versions < V18 Update 3). A reflected cross-site scripting (XSS) vulnerability exists in the web interface of the affected applications that could allow an attacker to inject arbitrary JavaScript code. The code could be potentially executed later by another (possibly privileged) user."
|
||||
}
|
||||
]
|
||||
},
|
||||
@ -40,8 +40,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V2312"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -51,8 +52,21 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V4.1"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V4.1"
|
||||
}
|
||||
]
|
||||
}
|
||||
},
|
||||
{
|
||||
"product_name": "SINEC NMS",
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V2.0 SP1"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -73,8 +87,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "*"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -84,8 +99,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "*"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -95,8 +111,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "*"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -106,8 +123,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V17 Update 7"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V17 Update 7"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -117,8 +135,9 @@
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "All versions < V18 Update 3"
|
||||
"version_affected": "<",
|
||||
"version_name": "0",
|
||||
"version_value": "V18 Update 3"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -135,6 +154,11 @@
|
||||
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-999588.pdf",
|
||||
"refsource": "MISC",
|
||||
"name": "https://cert-portal.siemens.com/productcert/pdf/ssa-999588.pdf"
|
||||
},
|
||||
{
|
||||
"url": "https://cert-portal.siemens.com/productcert/html/ssa-999588.html",
|
||||
"refsource": "MISC",
|
||||
"name": "https://cert-portal.siemens.com/productcert/html/ssa-999588.html"
|
||||
}
|
||||
]
|
||||
},
|
||||
|
||||
Loading…
x
Reference in New Issue
Block a user