VYPR
Unrated severityNVD Advisory· Published Mar 21, 2019· Updated Aug 5, 2024

CVE-2018-13798

CVE-2018-13798

Description

A vulnerability has been identified in SICAM A8000 CP-8000 (All versions < V14), SICAM A8000 CP-802X (All versions < V14), SICAM A8000 CP-8050 (All versions < V2.00). Specially crafted network packets sent to port 80/TCP or 443/TCP could allow an unauthenticated remote attacker to cause a Denial-of-Service condition of the web server. The security vulnerability could be exploited by an attacker with network access to the affected systems on port 80/TCP or 443/TCP. Successful exploitation requires no system privileges and no user interaction. An attacker could use the vulnerability to compromise availability of the web server. A system reboot is required to recover the web service of the device. At the time of advisory update, exploit code for this security vulnerability is public.

Affected products

4
  • Siemens AG/SICAM A8000 CP-8000, SICAM A8000 CP-802X, SICAM A8000 CP-8050v5
    Range: SICAM A8000 CP-8000 : All versions < V14
  • Siemens AG/SICAM A8000 CP-802Xv5
    Range: SICAM A8000 CP-802X : All versions < V14
  • Siemens AG/SICAM A8000 CP-8050v5
    Range: All versions < V2.00

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.