cbcvebase.

Siemens Sppa-T3000 Ms3000 Migration Server vulnerabilities

9 known vulnerabilities affecting siemens/sppa-t3000_ms3000_migration_server.

Total CVEs
9
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL4HIGH4MEDIUM1

Vulnerabilities

Page 1 of 1
CVE-2019-18313P2CRITICALCVSS 9.8vAll versions2019-12-12
CVE-2019-18313 [CRITICAL] CWE-434 CVE-2019-18313: A vulnerability has been identified in SPPA-T3000 MS3000 Migration Server (All versions). An attacke A vulnerability has been identified in SPPA-T3000 MS3000 Migration Server (All versions). An attacker with network access to the MS3000 Server could gain remote code execution by sending specifically crafted objects to one of the RPC services. Please note that an attacker needs to have network access to the MS3000 in order to exploit this vulnerab
nvd
CVE-2019-18289P2CRITICALCVSS 9.8vAll versions2019-12-12
CVE-2019-18289 [CRITICAL] CWE-122 CVE-2019-18289: A vulnerability has been identified in SPPA-T3000 MS3000 Migration Server (All versions). An attacke A vulnerability has been identified in SPPA-T3000 MS3000 Migration Server (All versions). An attacker with network access to the MS3000 Server could trigger a Denial-of-Service condition and potentially gain remote code execution by sending specifically crafted packets to port 5010/tcp. This vulnerability is independent from CVE-2019-18293, CVE-20
nvd
CVE-2019-18321P2CRITICALCVSS 9.1vAll versions2019-12-12
CVE-2019-18321 [CRITICAL] CWE-287 CVE-2019-18321: A vulnerability has been identified in SPPA-T3000 MS3000 Migration Server (All versions). An attacke A vulnerability has been identified in SPPA-T3000 MS3000 Migration Server (All versions). An attacker with network access to the MS3000 Server could be able to read and write arbitrary files on the local file system by sending specifically crafted packets to port 5010/tcp. This vulnerability is independent from CVE-2019-18322. Please note that an
nvd
CVE-2019-18323P3CRITICALCVSS 9.8vAll versions2019-12-12
CVE-2019-18323 [CRITICAL] CWE-122 CVE-2019-18323: A vulnerability has been identified in SPPA-T3000 MS3000 Migration Server (All versions). An attacke A vulnerability has been identified in SPPA-T3000 MS3000 Migration Server (All versions). An attacker with network access to the MS3000 Server could cause a Denial-of-Service condition and potentially gain remote code execution by sending specifically crafted packets to 5010/tcp. This vulnerability is independent from CVE-2019-18324, CVE-2019-1832
nvd
CVE-2019-18310P3HIGHCVSS 7.5vAll versions2019-12-12
CVE-2019-18310 [HIGH] CWE-121 CVE-2019-18310: A vulnerability has been identified in SPPA-T3000 MS3000 Migration Server (All versions). An attacke A vulnerability has been identified in SPPA-T3000 MS3000 Migration Server (All versions). An attacker with network access to the MS3000 Server could trigger a Denial-of-Service condition by sending specifically crafted packets to port 7061/tcp. This vulnerability is independent from CVE-2019-18311. Please note that an attacker needs to have network ac
nvd
CVE-2019-18297P3HIGHCVSS 7.8vAll versions2019-12-12
CVE-2019-18297 [HIGH] CWE-122 CVE-2019-18297: A vulnerability has been identified in SPPA-T3000 MS3000 Migration Server (All versions). An attacke A vulnerability has been identified in SPPA-T3000 MS3000 Migration Server (All versions). An attacker with local access to the MS3000 Server and low privileges could gain root privileges by sending specifically crafted packets to a named pipe. Please note that an attacker needs to have local access to the MS3000 in order to exploit this vulnerability.
nvd
CVE-2019-18290P3HIGHCVSS 7.5vAll versions2019-12-12
CVE-2019-18290 [HIGH] CWE-122 CVE-2019-18290: A vulnerability has been identified in SPPA-T3000 MS3000 Migration Server (All versions). An attacke A vulnerability has been identified in SPPA-T3000 MS3000 Migration Server (All versions). An attacker with network access to the MS3000 Server could trigger a Denial-of-Service condition by sending specifically crafted packets to port 5010/tcp. This vulnerability is independent from CVE-2019-18291, CVE-2019-18292, CVE-2019-18294, CVE-2019-18298, CVE-2
nvd
CVE-2019-18308P3HIGHCVSS 7.8vAll versions2019-12-12
CVE-2019-18308 [HIGH] CWE-284 CVE-2019-18308: A vulnerability has been identified in SPPA-T3000 MS3000 Migration Server (All versions). An attacke A vulnerability has been identified in SPPA-T3000 MS3000 Migration Server (All versions). An attacker with local access to the MS3000 Server and a low privileged user account could gain root privileges by manipulating specific files in the local file system. This vulnerability is independent from CVE-2019-18309. Please note that an attacker needs to h
nvd
CVE-2019-18312P4MEDIUMCVSS 5.3vAll versions2019-12-12
CVE-2019-18312 [MEDIUM] CWE-287 CVE-2019-18312: A vulnerability has been identified in SPPA-T3000 MS3000 Migration Server (All versions). An attacke A vulnerability has been identified in SPPA-T3000 MS3000 Migration Server (All versions). An attacker with network access to the MS3000 Server could be able to enumerate running RPC services. Please note that an attacker needs to have network access to the MS3000 in order to exploit this vulnerability. At the time of advisory publication no public e
nvd
Siemens Sppa-T3000 Ms3000 Migration Server vulnerabilities | cvebase