CVE-2017-6019

Опубликовано: 07 апр. 2017

Источник: nvd

CVSS3: 7.5

CVSS2: 7.8

EPSS Средний

Описание

An issue was discovered in Schneider Electric Conext ComBox, model 865-1058, all firmware versions prior to V3.03 BN 830. A series of rapid requests to the device may cause it to reboot.

Ссылки

http://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2017-052-01
Vendor Advisory
http://www.securityfocus.com/bid/96543
Third Party Advisory
VDB Entry
https://ics-cert.us-cert.gov/advisories/ICSA-17-061-02
Mitigation
Third Party Advisory
US Government Resource
https://www.exploit-db.com/exploits/41537/
http://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2017-052-01
Vendor Advisory
http://www.securityfocus.com/bid/96543
Third Party Advisory
VDB Entry
https://ics-cert.us-cert.gov/advisories/ICSA-17-061-02
Mitigation
Third Party Advisory
US Government Resource
https://www.exploit-db.com/exploits/41537/

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:schneider-electric:conext_combox_865-1058_firmware:*:*:*:*:*:*:*:*

Версия до 3.03 (включая)

cpe:2.3:h:schneider-electric:conext_combox_865-1058:-:*:*:*:*:*:*:*

EPSS

Процентиль: 95%

0.20502

Средний

7.5 High

CVSS3

7.8 High

CVSS2

Дефекты

CWE-400

Связанные уязвимости

GHSA-54v8-5r88-9g69