← back
CVE-2018-17935

CVE-2018-17935

EPSS 0.7%CWE-294
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS EPSS 0.7%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
24 Oct 2018Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
All versions of Telecrane F25 Series Radio Controls before 00.0A use fixed codes that are reproducible by sniffing and re-transmission. This can lead to unauthorized replay of a command, spoofing of an arbitrary message, or keeping the controlled load in a permanent "stop" state.
Affected products
Telecrane · F25 Series

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://ics-cert.us-cert.gov/advisories/ICSA-18-296-03http://www.securityfocus.com/bid/105732