CVE-2019-13926

EPSS 1.5%CWE-400

Vexday Risk Score

3Bajo

Decisión SSVC (CISA)

Track

Sin señal de explotación → monitorear

CVSS —EPSS 1.5%KEV nãoPoC —Nuclei —Metasploit —Patch —

Ciclo de vida

11 feb 2020Publicada en NVD

Recomendación: Monitorear — sin señal de explotación por ahora.

A vulnerability has been identified in SCALANCE S602 (All versions >= V3.0 and < V4.1), SCALANCE S612 (All versions >= V3.0 and < V4.1), SCALANCE S623 (All versions >= V3.0 and < V4.1), SCALANCE S627-2M (All versions >= V3.0 and < V4.1). Specially crafted packets sent to port 443/tcp of affected devices could cause a Denial-of-Service condition of the web server. A cold reboot is required to restore the functionality of the device.

Productos afectados

Siemens · SCALANCE S602 Siemens · SCALANCE S612 Siemens · SCALANCE S623 Siemens · SCALANCE S627-2M

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://cert-portal.siemens.com/productcert/pdf/ssa-591405.pdf https://www.us-cert.gov/ics/advisories/icsa-20-042-10