ID

VAR-201803-2088


CVE

CVE-2018-5467


TITLE

plural Belden Hirschmann Information disclosure vulnerabilities in products

Trust: 0.8

sources: JVNDB: JVNDB-2018-002739

DESCRIPTION

An Information Exposure Through Query Strings in GET Request issue was discovered in Belden Hirschmann RS, RSR, RSB, MACH100, MACH1000, MACH4000, MS, and OCTOPUS Classic Platform Switches. An information exposure through query strings vulnerability in the web interface has been identified, which may allow an attacker to impersonate a legitimate user. plural Belden Hirschmann The product contains an information disclosure vulnerability and an access control vulnerability.The information may be obtained and the information may be falsified. BeldenHirschmannRS and other are the switch products of the Belden company in the United States. There are security holes in the web interface in several BeldenHirschmann switch products. An attacker can exploit this vulnerability to spoof legitimate users. 1. Session Hijacking Vulnerability 2. An information-disclosure vulnerability 3. A security-bypass vulnerability 4. A security weakness vulnerability 5. An authentication-bypass vulnerability An attacker can exploit this issue to bypass the authentication, obtain sensitive information and gain unauthorized access using brute-force attacks. Successfully exploiting this issue may lead to further attacks

Trust: 2.61

sources: NVD: CVE-2018-5467 // JVNDB: JVNDB-2018-002739 // CNVD: CNVD-2018-04785 // BID: 103340 // IVD: e2e4b11e-39ab-11e9-a5a5-000c29342cb1

IOT TAXONOMY

category:['ICS', 'Network device']sub_category: -

Trust: 0.6

category:['ICS']sub_category: -

Trust: 0.2

sources: IVD: e2e4b11e-39ab-11e9-a5a5-000c29342cb1 // CNVD: CNVD-2018-04785

AFFECTED PRODUCTS

vendor:beldenmodel:hirschmann rs20-1600l2s2sdauscope:eqversion: -

Trust: 1.6

vendor:beldenmodel:hirschmann rs20-1600s2t1sdauscope:eqversion: -

Trust: 1.6

vendor:beldenmodel:hirschmann rsr20scope:eqversion: -

Trust: 1.6

vendor:beldenmodel:hirschmann rs20-1600m2m2sdauscope:eqversion: -

Trust: 1.6

vendor:beldenmodel:hirschmann rs20-1600s2s2sdauscope:eqversion: -

Trust: 1.6

vendor:beldenmodel:hirschmann rs20-1600l2l2sdauscope:eqversion: -

Trust: 1.6

vendor:beldenmodel:hirschmann rs20-1600l2t1sdauscope:eqversion: -

Trust: 1.6

vendor:beldenmodel:hirschmann rsr30scope:eqversion: -

Trust: 1.6

vendor:beldenmodel:hirschmann rs20-1600s2m2sdauscope:eqversion: -

Trust: 1.6

vendor:beldenmodel:hirschmann rs20-1600m2t1sdauscope:eqversion: -

Trust: 1.6

vendor:beldenmodel:hirschmann rsscope: - version: -

Trust: 1.4

vendor:beldenmodel:hirschmann rsrscope: - version: -

Trust: 1.4

vendor:beldenmodel:hirschmann rsbscope: - version: -

Trust: 1.4

vendor:beldenmodel:hirschmann mach100scope: - version: -

Trust: 1.4

vendor:beldenmodel:hirschmann mach1000scope: - version: -

Trust: 1.4

vendor:beldenmodel:hirschmann mach4000scope: - version: -

Trust: 1.4

vendor:beldenmodel:hirschmann msscope: - version: -

Trust: 1.4

vendor:beldenmodel:hirschmann octopusscope: - version: -

Trust: 1.4

vendor:beldenmodel:hirschmann mach4002-24g-l2pscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus os24-080900t5t5tnebhhscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann mach104-16tx-poep-l3pscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus os30-0008024b4btrephhscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann mach104-20tx-f-l3pscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus 8m-train-bpscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus 8m-8poescope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus os20-0010001s1strephhscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus os20-001000t5t5tafuhbscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0800t1t1taabescope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0900s2ttsaabescope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus 16m-trainscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann m1-8tp-rj45scope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0900mmm2saabscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus os32-080802t6t6tpephhscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann mach104-20tx-fscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus 24mscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann mach4002-48g-l3escope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus os20-0010001m1mtrephhscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0900mmm2taabscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0800m2m2taabescope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus 16m-train-bpscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus os30-0008021a1atrephhscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann mach102-8tp-fscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0800t1t1saabscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus os30-0008024a4atrephhscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann mach102-24tp-fscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0900zzz6taabscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann mach104-16tx-poep -rscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0900vvm2taabescope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus 8mscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann mach104-16tx-poep \+2x -r-l3pscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann mach102-8tp-frscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann ms20-0800eccpscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0900mmm2saabescope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0900s2tttaabscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus os32-081602o6o6tpephhscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0800s2s2saabscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann mach104-16tx-poep \+2x -rscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus 24m-8 poescope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus os30scope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0800t1t1taabscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus 8m-trainscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus 5tx eecscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rs20-0900nnm4tdauscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann mach4002-24g\+3x-l3pscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann mach104-20tx-frscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann ms20-0800saaescope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0800t1t1saabescope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0900vvm2saabescope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann mach4002-24g\+3x-l2pscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0900s2tttaabescope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rs20-1600l2m2sdauscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus os24-081000t5t5tffuhbscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus os20-000900t5t5tnebhhscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus 24m-train-bpscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus os24-081000t5t5tneuhbscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0900zzz6taabescope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann mach104-16tx-poep -escope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus os30-0008021b1btrephhscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann mach4002-48g\+3x-l3escope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus 8tx-eecscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0800m2m2saabscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus os32-081602t6t6tpephhscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus 8tx poe-eecscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann mach4002-48g\+3x-l3pscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0900vvm2taabscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0900s2ttsaabscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann mach104-16tx-poep \+2x -e-l3pscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus 16m-8poescope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus os3x-xx24xxxscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann mach102-8tp-rscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann mach104-16tx-poep -e-l3pscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann mach4002-48g-l3pscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0900m2ttsaabescope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0800m2m2taabscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann m1-8sfpscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann mach102-8tpscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann mach4002-24g-l3escope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann mach4002-24g-l3pscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann mach104-16tx-poep -r-l3pscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann ms20-1600eccpscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus os20-0010004m4mtrephhscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0800s2s2taabescope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann mach104-16tx-poepscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann mach104-20tx-f-4poescope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0900zzz6saabescope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0900vvm2saabscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus 24m-trainscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0900m2tttaabescope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus 8m-6poescope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann mach104-20tx-fr-l3pscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann m1-8mm-scscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rs20-0900vvm2tdauscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann mach4002-48g-l2pscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann ms20-1600saaescope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann m1-8sm-scscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann ms30-0802saaescope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus os20-0010004s4strephhscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann ms20-1600saapscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus os3x-xx16xxxscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann mach4002-48g\+3x-l2pscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus os20-001000t5t5tneuhbscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0800s2s2taabscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0900m2tttaabscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann mach104-16tx-poep \+2x-l3pscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann ms30-0802saapscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0800m2m2saabescope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0900m2ttsaabscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann mach104-16tx-poep \+2x -escope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann mach4002-24g\+3x-l3escope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0900mmm2taabescope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus 16mscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann ms30-1602saaescope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0900zzz6saabscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann mach102-24tp-frscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus os24-080900t5t5tffbhhscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus os20-000900t5t5tafbhhscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann mach104-16tx-poep \+2xscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus os34scope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0800s2s2saabescope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus os32-080802o6o6tpephhscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann ms20-0800saapscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rs20-0900mmm2tdauscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:rsrscope:eqversion:0

Trust: 0.3

vendor:beldenmodel:rsbscope:eqversion:0

Trust: 0.3

vendor:beldenmodel:rsscope:eqversion:0

Trust: 0.3

vendor:beldenmodel:octopusscope:eqversion:0

Trust: 0.3

vendor:beldenmodel:msscope:eqversion:0

Trust: 0.3

vendor:beldenmodel:mach4000scope:eqversion:0

Trust: 0.3

vendor:beldenmodel:mach1000scope:eqversion:0

Trust: 0.3

vendor:beldenmodel:mach100scope:eqversion:0

Trust: 0.3

vendor:hirschmann rs20 0900mmm2tdaumodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rs20 0900nnm4tdaumodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rs20 0900vvm2tdaumodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rs20 1600l2l2sdaumodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rs20 1600l2m2sdaumodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rs20 1600l2s2sdaumodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rs20 1600l2t1sdaumodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rs20 1600m2m2sdaumodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rs20 1600m2t1sdaumodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rs20 1600s2m2sdaumodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rs20 1600s2s2sdaumodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rs20 1600s2t1sdaumodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsr20model: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsr30model: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0800m2m2saabmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0800m2m2saabemodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0800m2m2taabmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0800m2m2taabemodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0800s2s2saabmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0800s2s2saabemodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0800s2s2taabmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0800s2s2taabemodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0800t1t1saabmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0800t1t1saabemodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0800t1t1taabmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0800t1t1taabemodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0900m2ttsaabmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0900m2ttsaabemodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0900m2tttaabmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0900m2tttaabemodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0900mmm2saabmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0900mmm2saabemodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0900mmm2taabmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0900mmm2taabemodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0900s2ttsaabmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0900s2ttsaabemodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0900s2tttaabmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0900s2tttaabemodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0900vvm2saabmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0900vvm2saabemodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0900vvm2taabmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0900vvm2taabemodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0900zzz6saabmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0900zzz6saabemodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0900zzz6taabmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0900zzz6taabemodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann m1 8mm scmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann m1 8sfpmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann m1 8sm scmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann m1 8tp rj45model: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach102 24tp fmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach102 24tp frmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach102 8tpmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach102 8tp fmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach102 8tp frmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach102 8tp rmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach104 16tx poepmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach104 16tx poep l3pmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach104 16tx poep 2xmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach104 16tx poep 2x l3pmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach104 16tx poep 2x emodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach104 16tx poep 2x e l3pmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach104 16tx poep 2x rmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach104 16tx poep 2x r l3pmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach104 16tx poep emodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach104 16tx poep e l3pmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach104 16tx poep rmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach104 16tx poep r l3pmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach104 20tx fmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach104 20tx f 4poemodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach104 20tx f l3pmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach104 20tx frmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach104 20tx fr l3pmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach4002 24g 3x l2pmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach4002 24g 3x l3emodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach4002 24g 3x l3pmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach4002 24g l2pmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach4002 24g l3emodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach4002 24g l3pmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach4002 48g 3x l2pmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach4002 48g 3x l3emodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach4002 48g 3x l3pmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach4002 48g l2pmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach4002 48g l3emodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach4002 48g l3pmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann ms20 0800eccpmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann ms20 0800saaemodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann ms20 0800saapmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann ms20 1600eccpmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann ms20 1600saaemodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann ms20 1600saapmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann ms30 0802saaemodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann ms30 0802saapmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann ms30 1602saaemodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus 16mmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus 16m 8poemodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus 16m trainmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus 16m train bpmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus 24mmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus 24m 8 poemodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus 24m trainmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus 24m train bpmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus 5tx eecmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus 8mmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus 8m 6poemodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus 8m 8poemodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus 8m trainmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus 8m train bpmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus 8tx eecmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus 8tx poe eecmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus os20 000900t5t5tafbhhmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus os20 000900t5t5tnebhhmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus os20 0010001m1mtrephhmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus os20 0010001s1strephhmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus os20 0010004m4mtrephhmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus os20 0010004s4strephhmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus os20 001000t5t5tafuhbmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus os20 001000t5t5tneuhbmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus os24 080900t5t5tffbhhmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus os24 080900t5t5tnebhhmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus os24 081000t5t5tffuhbmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus os24 081000t5t5tneuhbmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus os30model: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus os30 0008021a1atrephhmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus os30 0008021b1btrephhmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus os30 0008024a4atrephhmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus os30 0008024b4btrephhmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus os32 080802o6o6tpephhmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus os32 080802t6t6tpephhmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus os32 081602o6o6tpephhmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus os32 081602t6t6tpephhmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus os34model: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus os3x xx16xxxmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus os3x xx24xxxmodel: - scope:eqversion: -

Trust: 0.2

sources: IVD: e2e4b11e-39ab-11e9-a5a5-000c29342cb1 // CNVD: CNVD-2018-04785 // BID: 103340 // JVNDB: JVNDB-2018-002739 // CNNVD: CNNVD-201803-138 // NVD: CVE-2018-5467

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2018-5467
value: MEDIUM

Trust: 1.0

NVD: CVE-2018-5467
value: MEDIUM

Trust: 0.8

CNVD: CNVD-2018-04785
value: MEDIUM

Trust: 0.6

CNNVD: CNNVD-201803-138
value: MEDIUM

Trust: 0.6

IVD: e2e4b11e-39ab-11e9-a5a5-000c29342cb1
value: MEDIUM

Trust: 0.2

nvd@nist.gov: CVE-2018-5467
severity: MEDIUM
baseScore: 6.4
vectorString: AV:N/AC:L/AU:N/C:P/I:P/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: 10.0
impactScore: 4.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

CNVD: CNVD-2018-04785
severity: MEDIUM
baseScore: 4.0
vectorString: AV:N/AC:H/AU:N/C:P/I:P/A:N
accessVector: NETWORK
accessComplexity: HIGH
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: 4.9
impactScore: 4.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

IVD: e2e4b11e-39ab-11e9-a5a5-000c29342cb1
severity: MEDIUM
baseScore: 4.0
vectorString: AV:N/AC:H/AU:N/C:P/I:P/A:N
accessVector: NETWORK
accessComplexity: HIGH
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: 4.9
impactScore: 4.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.9 [IVD]

Trust: 0.2

nvd@nist.gov: CVE-2018-5467
baseSeverity: MEDIUM
baseScore: 6.5
vectorString: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: LOW
integrityImpact: LOW
availabilityImpact: NONE
exploitabilityScore: 3.9
impactScore: 2.5
version: 3.0

Trust: 1.8

sources: IVD: e2e4b11e-39ab-11e9-a5a5-000c29342cb1 // CNVD: CNVD-2018-04785 // JVNDB: JVNDB-2018-002739 // CNNVD: CNNVD-201803-138 // NVD: CVE-2018-5467

PROBLEMTYPE DATA

problemtype:CWE-200

Trust: 1.8

problemtype:CWE-598

Trust: 1.0

problemtype:CWE-284

Trust: 0.8

sources: JVNDB: JVNDB-2018-002739 // NVD: CVE-2018-5467

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201803-138

TYPE

information disclosure

Trust: 0.6

sources: CNNVD: CNNVD-201803-138

CONFIGURATIONS

sources: JVNDB: JVNDB-2018-002739

PATCH

title:Top Pageurl:http://www.hirschmann.com/

Trust: 0.8

sources: JVNDB: JVNDB-2018-002739

EXTERNAL IDS

db:NVDid:CVE-2018-5467

Trust: 3.5

db:ICS CERTid:ICSA-18-065-01

Trust: 3.3

db:BIDid:103340

Trust: 1.9

db:CNVDid:CNVD-2018-04785

Trust: 0.8

db:CNNVDid:CNNVD-201803-138

Trust: 0.8

db:JVNDBid:JVNDB-2018-002739

Trust: 0.8

db:IVDid:E2E4B11E-39AB-11E9-A5A5-000C29342CB1

Trust: 0.2

sources: IVD: e2e4b11e-39ab-11e9-a5a5-000c29342cb1 // CNVD: CNVD-2018-04785 // BID: 103340 // JVNDB: JVNDB-2018-002739 // CNNVD: CNNVD-201803-138 // NVD: CVE-2018-5467

REFERENCES

url:https://ics-cert.us-cert.gov/advisories/icsa-18-065-01

Trust: 3.3

url:http://www.securityfocus.com/bid/103340

Trust: 1.6

url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2018-5467

Trust: 0.8

url:https://nvd.nist.gov/vuln/detail/cve-2018-5467

Trust: 0.8

url:https://www.belden.com/

Trust: 0.3

sources: CNVD: CNVD-2018-04785 // BID: 103340 // JVNDB: JVNDB-2018-002739 // CNNVD: CNNVD-201803-138 // NVD: CVE-2018-5467

CREDITS

Ilya Karpov, Evgeniy Druzhinin, Mikhail Tsvetkov, and Damir Zainullin of Positive Technologies.

Trust: 0.3

sources: BID: 103340

SOURCES

db:IVDid:e2e4b11e-39ab-11e9-a5a5-000c29342cb1
db:CNVDid:CNVD-2018-04785
db:BIDid:103340
db:JVNDBid:JVNDB-2018-002739
db:CNNVDid:CNNVD-201803-138
db:NVDid:CVE-2018-5467

LAST UPDATE DATE

2024-11-23T22:26:26.096000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2018-04785date:2018-03-09T00:00:00
db:BIDid:103340date:2018-03-06T00:00:00
db:JVNDBid:JVNDB-2018-002739date:2018-04-26T00:00:00
db:CNNVDid:CNNVD-201803-138date:2019-10-17T00:00:00
db:NVDid:CVE-2018-5467date:2024-11-21T04:08:51.463

SOURCES RELEASE DATE

db:IVDid:e2e4b11e-39ab-11e9-a5a5-000c29342cb1date:2018-03-09T00:00:00
db:CNVDid:CNVD-2018-04785date:2018-03-09T00:00:00
db:BIDid:103340date:2018-03-06T00:00:00
db:JVNDBid:JVNDB-2018-002739date:2018-04-26T00:00:00
db:CNNVDid:CNNVD-201803-138date:2018-03-07T00:00:00
db:NVDid:CVE-2018-5467date:2018-03-06T21:29:00.347