Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up

CVE-2018-4833

UNKNOWN
Published 2018-06-14T16:00:00
Actions:

Expert Analysis

Professional remediation guidance

Get tailored security recommendations from our analyst team for CVE-2018-4833. We'll provide specific mitigation strategies based on your environment and risk profile.

No CVSS data available

Description

A vulnerability has been identified in RFID 181EIP (All versions), RUGGEDCOM Win (V4.4, V4.5, V5.0, and V5.1), SCALANCE X-200 switch family (incl. SIPLUS NET variants) (All versions < V5.2.3), SCALANCE X-200IRT switch family (incl. SIPLUS NET variants) (All versions < V5.4.1), SCALANCE X-200RNA switch family (All versions < V3.2.6), SCALANCE X-300 switch family (incl. SIPLUS NET variants) (All versions < V4.1.3), SCALANCE X408 (All versions < V4.1.3), SCALANCE X414 (All versions), SIMATIC RF182C (All versions). Unprivileged remote attackers located in the same local network segment (OSI Layer 2) could gain remote code execution on the affected products by sending a specially crafted DHCP response to a client's DHCP request.

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

Affected Products

Siemens

RFID 181EIP

Affected Versions:

All versions
Siemens

RUGGEDCOM Win

Affected Versions:

V4.4, V4.5, V5.0, and V5.1
Siemens

SCALANCE X-200 switch family (incl. SIPLUS NET variants)

Affected Versions:

All versions < V5.2.3
Siemens

SCALANCE X-200IRT switch family (incl. SIPLUS NET variants)

Affected Versions:

All versions < V5.4.1
Siemens

SCALANCE X-200RNA switch family

Affected Versions:

All versions < V3.2.6
Siemens

SCALANCE X-300 switch family (incl. SIPLUS NET variants)

Affected Versions:

All versions < V4.1.3
Siemens

SCALANCE X408

Affected Versions:

All versions < V4.1.3
Siemens

SCALANCE X414

Affected Versions:

All versions
Siemens

SIMATIC RF182C

Affected Versions:

All versions

GitHub Security Advisories

Community-driven vulnerability intelligence from GitHub

⚠ Unreviewed HIGH

GHSA-w74m-fchp-7mq8

Advisory Details

A vulnerability has been identified in RFID 181EIP (All versions), RUGGEDCOM Win (V4.4, V4.5, V5.0, and V5.1), SCALANCE X-200 switch family (incl. SIPLUS NET variants) (All versions < V5.2.3), SCALANCE X-200IRT switch family (incl. SIPLUS NET variants) (All versions < V5.4.1), SCALANCE X-200RNA switch family (All versions < V3.2.6), SCALANCE X-300 switch family (incl. SIPLUS NET variants) (All versions < V4.1.3), SCALANCE X408 (All versions < V4.1.3), SCALANCE X414 (All versions), SIMATIC RF182C (All versions). Unprivileged remote attackers located in the same local network segment (OSI Layer 2) could gain remote code execution on the affected products by sending a specially crafted DHCP response to a client's DHCP request.

CVSS Scoring

CVSS Score

7.5

CVSS Vector

CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2018-4833
WEB https://cert-portal.siemens.com/productcert/pdf/ssa-181018.pdf

Advisory provided by GitHub Security Advisory Database. Published: May 13, 2022, Modified: May 13, 2022

References

https://cert-portal.siemens.com/productcert/pdf/ssa-181018.pdf
Published: 2018-06-14T16:00:00
Last Modified: 2024-08-05T05:18:26.432Z
Copied to clipboard!