CVE-2019-10928Improper Check or Handling of Exceptional Conditions in AG Scalance Sc-600

CWE-703Improper Check or Handling of Exceptional Conditions3 documents3 sources
Severity
6.6MEDIUMNVD
EPSS
0.1%
top 80.05%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Siemens AG Scalance Sc-600Siemens Scalance Sc-600 Firmware
Timeline
PublishedAug 13
Latest updateMay 24

Description

A vulnerability has been identified in SCALANCE SC-600 (V2.0). An authenticated attacker with access to port 22/tcp as well as physical access to an affected device may trigger the device to allow execution of arbitrary commands. The security vulnerability could be exploited by an authenticated attacker with physical access to the affected device. No user interaction is required to exploit this vulnerability. The vulnerability impacts the confidentiality, integrity and availability of the affect

CVSS vector

CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 0.7 | Impact: 5.9

Affected Packages2 packages

🔴Vulnerability Details

2
GHSA
GHSA-m34p-92f7-v94j: A vulnerability has been identified in SCALANCE SC-600 (V22022-05-24
CVEList
CVE-2019-10928: A vulnerability has been identified in SCALANCE SC-600 (V22019-08-13
CVE-2019-10928 — AG Scalance Sc-600 vulnerability | cvebase