CVE-2019-13925 Information

Share on:

Description

A vulnerability has been identified in SCALANCE S602 (All versions = V3.0) SCALANCE S612 (All versions = V3.0) SCALANCE S623 (All versions = V3.0) SCALANCE S627-2M (All versions = V3.0). Specially crafted packets sent to port 443/tcp of affected devices could cause a Denial-of-Service condition of the web server.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Reference

https://cert-portal.siemens.com/productcert/pdf/ssa-591405.pdf https://www.us-cert.gov/ics/advisories/icsa-20-042-10

Attack Complexity

LOW

Privileges Required

NONE

User Interaction Required

NONE

Scope

NONE

Confidentiality Impact

UNCHANGED

Integrity Impact

NONE

Availability Impact

NONE

Base Score

HIGH

Base Severity

7.5