Vulnerabilities > CVE-2018-11449 - Unspecified vulnerability in Siemens Scalance M875 Firmware

CVSS 7.8 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

siemens

NVD

Published: 2018-06-26

Updated: 2019-10-09

Summary

A vulnerability has been identified in SCALANCE M875 (All versions). An attacker with access to the local file system might obtain passwords for administrative users. Successful exploitation requires read access to files on the local file system. A successful attack could allow an attacker to obtain administrative passwords. At the time of advisory publication no public exploitation of this security vulnerability was known.

Vulnerable Configurations

Part	Description	Count
OS	Siemens Siemens Scalance M875 Firmware -	1
Hardware	Siemens Siemens Scalance M875 -	1

References

https://cert-portal.siemens.com/productcert/pdf/ssa-977428.pdf