Sign-up

ID

VAR-201803-2086


CVE

CVE-2018-5465


TITLE

plural Belden Hirschmann Session fixation vulnerability in products

Trust: 0.8

sources: JVNDB: JVNDB-2018-002738

DESCRIPTION

A Session Fixation issue was discovered in Belden Hirschmann RS, RSR, RSB, MACH100, MACH1000, MACH4000, MS, and OCTOPUS Classic Platform Switches. A session fixation vulnerability in the web interface has been identified, which may allow an attacker to hijack web sessions. plural Belden Hirschmann The product contains a session fixation vulnerability.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. BeldenHirschmannRS and other are the switch products of the Belden company in the United States. Multiple Belden Products are prone to the following security vulnerabilities. 1. An information-disclosure vulnerability 3. A security-bypass vulnerability 4. A security weakness vulnerability 5. An authentication-bypass vulnerability An attacker can exploit this issue to bypass the authentication, obtain sensitive information and gain unauthorized access using brute-force attacks. Successfully exploiting this issue may lead to further attacks

Trust: 2.61

sources: NVD: CVE-2018-5465 // JVNDB: JVNDB-2018-002738 // CNVD: CNVD-2018-04784 // BID: 103340 // IVD: e2e48a10-39ab-11e9-b994-000c29342cb1

IOT TAXONOMY

category:['ICS', 'Network device']sub_category: -

Trust: 0.6

category:['ICS']sub_category: -

Trust: 0.2

sources: IVD: e2e48a10-39ab-11e9-b994-000c29342cb1 // CNVD: CNVD-2018-04784

AFFECTED PRODUCTS

vendor:beldenmodel:hirschmann mach104-16tx-poep -rscope:eqversion: -

Trust: 1.6

vendor:beldenmodel:hirschmann mach104-16tx-poep \+2x -escope:eqversion: -

Trust: 1.6

vendor:beldenmodel:hirschmann mach104-16tx-poep \+2x -r-l3pscope:eqversion: -

Trust: 1.6

vendor:beldenmodel:hirschmann mach104-16tx-poep -escope:eqversion: -

Trust: 1.6

vendor:beldenmodel:hirschmann mach104-16tx-poep -e-l3pscope:eqversion: -

Trust: 1.6

vendor:beldenmodel:hirschmann mach104-16tx-poep -r-l3pscope:eqversion: -

Trust: 1.6

vendor:beldenmodel:hirschmann mach104-16tx-poep \+2x -rscope:eqversion: -

Trust: 1.6

vendor:beldenmodel:hirschmann mach104-20tx-fscope:eqversion: -

Trust: 1.6

vendor:beldenmodel:hirschmann mach104-20tx-fr-l3pscope:eqversion: -

Trust: 1.6

vendor:beldenmodel:hirschmann mach104-16tx-poep \+2x -e-l3pscope:eqversion: -

Trust: 1.6

vendor:beldenmodel:hirschmann rsscope: - version: -

Trust: 1.4

vendor:beldenmodel:hirschmann rsrscope: - version: -

Trust: 1.4

vendor:beldenmodel:hirschmann rsbscope: - version: -

Trust: 1.4

vendor:beldenmodel:hirschmann mach100scope: - version: -

Trust: 1.4

vendor:beldenmodel:hirschmann mach1000scope: - version: -

Trust: 1.4

vendor:beldenmodel:hirschmann mach4000scope: - version: -

Trust: 1.4

vendor:beldenmodel:hirschmann msscope: - version: -

Trust: 1.4

vendor:beldenmodel:hirschmann octopusscope: - version: -

Trust: 1.4

vendor:beldenmodel:hirschmann mach4002-24g-l2pscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus os24-080900t5t5tnebhhscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann mach104-16tx-poep-l3pscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus os30-0008024b4btrephhscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann mach104-20tx-f-l3pscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus 8m-train-bpscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rs20-1600m2m2sdauscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus 8m-8poescope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus os20-0010001s1strephhscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus os20-001000t5t5tafuhbscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0800t1t1taabescope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0900s2ttsaabescope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus 16m-trainscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rs20-1600l2t1sdauscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann m1-8tp-rj45scope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0900mmm2saabscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus os32-080802t6t6tpephhscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus 24mscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann mach4002-48g-l3escope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus os20-0010001m1mtrephhscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0900mmm2taabscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0800m2m2taabescope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus 16m-train-bpscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus os30-0008021a1atrephhscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann mach102-8tp-fscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0800t1t1saabscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus os30-0008024a4atrephhscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann mach102-24tp-fscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0900zzz6taabscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0900vvm2taabescope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus 8mscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann mach102-8tp-frscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann ms20-0800eccpscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0900mmm2saabescope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0900s2tttaabscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus os32-081602o6o6tpephhscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0800s2s2saabscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus 24m-8 poescope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus os30scope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0800t1t1taabscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus 8m-trainscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus 5tx eecscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rs20-0900nnm4tdauscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann mach4002-24g\+3x-l3pscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsr20scope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann mach104-20tx-frscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann ms20-0800saaescope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0800t1t1saabescope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0900vvm2saabescope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann mach4002-24g\+3x-l2pscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0900s2tttaabescope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rs20-1600l2m2sdauscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus os24-081000t5t5tffuhbscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus os20-000900t5t5tnebhhscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus 24m-train-bpscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus os24-081000t5t5tneuhbscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0900zzz6taabescope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus os30-0008021b1btrephhscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsr30scope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann mach4002-48g\+3x-l3escope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus 8tx-eecscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0800m2m2saabscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus os32-081602t6t6tpephhscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus 8tx poe-eecscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann mach4002-48g\+3x-l3pscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0900vvm2taabscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0900s2ttsaabscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus 16m-8poescope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus os3x-xx24xxxscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann mach102-8tp-rscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rs20-1600l2l2sdauscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann mach4002-48g-l3pscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0900m2ttsaabescope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0800m2m2taabscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann m1-8sfpscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann mach102-8tpscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann mach4002-24g-l3escope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann mach4002-24g-l3pscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann ms20-1600eccpscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus os20-0010004m4mtrephhscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0800s2s2taabescope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann mach104-16tx-poepscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann mach104-20tx-f-4poescope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rs20-1600s2s2sdauscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0900zzz6saabescope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0900vvm2saabscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus 24m-trainscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0900m2tttaabescope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus 8m-6poescope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann m1-8mm-scscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rs20-0900vvm2tdauscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann mach4002-48g-l2pscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann ms20-1600saaescope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann m1-8sm-scscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rs20-1600l2s2sdauscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann ms30-0802saaescope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus os20-0010004s4strephhscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann ms20-1600saapscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus os3x-xx16xxxscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rs20-1600m2t1sdauscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann mach4002-48g\+3x-l2pscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus os20-001000t5t5tneuhbscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0800s2s2taabscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0900m2tttaabscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann mach104-16tx-poep \+2x-l3pscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann ms30-0802saapscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0800m2m2saabescope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0900m2ttsaabscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann mach4002-24g\+3x-l3escope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0900mmm2taabescope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus 16mscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann ms30-1602saaescope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rs20-1600s2t1sdauscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0900zzz6saabscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann mach102-24tp-frscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus os24-080900t5t5tffbhhscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus os20-000900t5t5tafbhhscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann mach104-16tx-poep \+2xscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus os34scope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rsb20-0800s2s2saabescope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann octopus os32-080802o6o6tpephhscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann ms20-0800saapscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rs20-1600s2m2sdauscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:hirschmann rs20-0900mmm2tdauscope:eqversion: -

Trust: 1.0

vendor:beldenmodel:rsrscope:eqversion:0

Trust: 0.3

vendor:beldenmodel:rsbscope:eqversion:0

Trust: 0.3

vendor:beldenmodel:rsscope:eqversion:0

Trust: 0.3

vendor:beldenmodel:octopusscope:eqversion:0

Trust: 0.3

vendor:beldenmodel:msscope:eqversion:0

Trust: 0.3

vendor:beldenmodel:mach4000scope:eqversion:0

Trust: 0.3

vendor:beldenmodel:mach1000scope:eqversion:0

Trust: 0.3

vendor:beldenmodel:mach100scope:eqversion:0

Trust: 0.3

vendor:hirschmann rs20 0900mmm2tdaumodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rs20 0900nnm4tdaumodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rs20 0900vvm2tdaumodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rs20 1600l2l2sdaumodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rs20 1600l2m2sdaumodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rs20 1600l2s2sdaumodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rs20 1600l2t1sdaumodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rs20 1600m2m2sdaumodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rs20 1600m2t1sdaumodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rs20 1600s2m2sdaumodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rs20 1600s2s2sdaumodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rs20 1600s2t1sdaumodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsr20model: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsr30model: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0800m2m2saabmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0800m2m2saabemodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0800m2m2taabmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0800m2m2taabemodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0800s2s2saabmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0800s2s2saabemodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0800s2s2taabmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0800s2s2taabemodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0800t1t1saabmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0800t1t1saabemodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0800t1t1taabmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0800t1t1taabemodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0900m2ttsaabmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0900m2ttsaabemodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0900m2tttaabmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0900m2tttaabemodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0900mmm2saabmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0900mmm2saabemodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0900mmm2taabmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0900mmm2taabemodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0900s2ttsaabmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0900s2ttsaabemodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0900s2tttaabmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0900s2tttaabemodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0900vvm2saabmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0900vvm2saabemodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0900vvm2taabmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0900vvm2taabemodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0900zzz6saabmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0900zzz6saabemodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0900zzz6taabmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann rsb20 0900zzz6taabemodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann m1 8mm scmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann m1 8sfpmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann m1 8sm scmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann m1 8tp rj45model: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach102 24tp fmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach102 24tp frmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach102 8tpmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach102 8tp fmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach102 8tp frmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach102 8tp rmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach104 16tx poepmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach104 16tx poep l3pmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach104 16tx poep 2xmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach104 16tx poep 2x l3pmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach104 16tx poep 2x emodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach104 16tx poep 2x e l3pmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach104 16tx poep 2x rmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach104 16tx poep 2x r l3pmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach104 16tx poep emodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach104 16tx poep e l3pmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach104 16tx poep rmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach104 16tx poep r l3pmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach104 20tx fmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach104 20tx f 4poemodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach104 20tx f l3pmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach104 20tx frmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach104 20tx fr l3pmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach4002 24g 3x l2pmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach4002 24g 3x l3emodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach4002 24g 3x l3pmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach4002 24g l2pmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach4002 24g l3emodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach4002 24g l3pmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach4002 48g 3x l2pmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach4002 48g 3x l3emodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach4002 48g 3x l3pmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach4002 48g l2pmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach4002 48g l3emodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann mach4002 48g l3pmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann ms20 0800eccpmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann ms20 0800saaemodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann ms20 0800saapmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann ms20 1600eccpmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann ms20 1600saaemodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann ms20 1600saapmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann ms30 0802saaemodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann ms30 0802saapmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann ms30 1602saaemodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus 16mmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus 16m 8poemodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus 16m trainmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus 16m train bpmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus 24mmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus 24m 8 poemodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus 24m trainmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus 24m train bpmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus 5tx eecmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus 8mmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus 8m 6poemodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus 8m 8poemodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus 8m trainmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus 8m train bpmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus 8tx eecmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus 8tx poe eecmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus os20 000900t5t5tafbhhmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus os20 000900t5t5tnebhhmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus os20 0010001m1mtrephhmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus os20 0010001s1strephhmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus os20 0010004m4mtrephhmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus os20 0010004s4strephhmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus os20 001000t5t5tafuhbmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus os20 001000t5t5tneuhbmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus os24 080900t5t5tffbhhmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus os24 080900t5t5tnebhhmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus os24 081000t5t5tffuhbmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus os24 081000t5t5tneuhbmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus os30model: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus os30 0008021a1atrephhmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus os30 0008021b1btrephhmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus os30 0008024a4atrephhmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus os30 0008024b4btrephhmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus os32 080802o6o6tpephhmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus os32 080802t6t6tpephhmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus os32 081602o6o6tpephhmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus os32 081602t6t6tpephhmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus os34model: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus os3x xx16xxxmodel: - scope:eqversion: -

Trust: 0.2

vendor:hirschmann octopus os3x xx24xxxmodel: - scope:eqversion: -

Trust: 0.2

sources: IVD: e2e48a10-39ab-11e9-b994-000c29342cb1 // CNVD: CNVD-2018-04784 // BID: 103340 // JVNDB: JVNDB-2018-002738 // CNNVD: CNNVD-201803-139 // NVD: CVE-2018-5465

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2018-5465
value: HIGH

Trust: 1.0

NVD: CVE-2018-5465
value: HIGH

Trust: 0.8

CNVD: CNVD-2018-04784
value: HIGH

Trust: 0.6

CNNVD: CNNVD-201803-139
value: HIGH

Trust: 0.6

IVD: e2e48a10-39ab-11e9-b994-000c29342cb1
value: HIGH

Trust: 0.2

nvd@nist.gov: CVE-2018-5465
severity: MEDIUM
baseScore: 6.8
vectorString: AV:N/AC:M/AU:N/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 8.6
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

CNVD: CNVD-2018-04784
severity: HIGH
baseScore: 7.6
vectorString: AV:N/AC:H/AU:N/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: HIGH
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 4.9
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

IVD: e2e48a10-39ab-11e9-b994-000c29342cb1
severity: HIGH
baseScore: 7.6
vectorString: AV:N/AC:H/AU:N/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: HIGH
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 4.9
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.9 [IVD]

Trust: 0.2

nvd@nist.gov: CVE-2018-5465
baseSeverity: HIGH
baseScore: 8.8
vectorString: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: REQUIRED
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 2.8
impactScore: 5.9
version: 3.0

Trust: 1.8

sources: IVD: e2e48a10-39ab-11e9-b994-000c29342cb1 // CNVD: CNVD-2018-04784 // JVNDB: JVNDB-2018-002738 // CNNVD: CNNVD-201803-139 // NVD: CVE-2018-5465

PROBLEMTYPE DATA

problemtype:CWE-384

Trust: 1.8

sources: JVNDB: JVNDB-2018-002738 // NVD: CVE-2018-5465

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201803-139

TYPE

authorization issue

Trust: 0.6

sources: CNNVD: CNNVD-201803-139

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2018-002738

PATCH
title:Top Pageurl:http://www.hirschmann.com/
Trust: 0.8
sources:
            
            
            JVNDB: JVNDB-2018-002738

EXTERNAL IDS
db:NVDid:CVE-2018-5465
Trust: 3.5
db:ICS CERTid:ICSA-18-065-01
Trust: 3.3
db:BIDid:103340
Trust: 1.9
db:CNVDid:CNVD-2018-04784
Trust: 0.8
db:CNNVDid:CNNVD-201803-139
Trust: 0.8
db:JVNDBid:JVNDB-2018-002738
Trust: 0.8
db:IVDid:E2E48A10-39AB-11E9-B994-000C29342CB1
Trust: 0.2
sources:
            
            
            IVD: e2e48a10-39ab-11e9-b994-000c29342cb1 // 
            
            
            
            CNVD: CNVD-2018-04784 // 
            
            
            
            BID: 103340 // 
            
            
            
            JVNDB: JVNDB-2018-002738 // 
            
            
            
            CNNVD: CNNVD-201803-139 // 
            
            
            
            NVD: CVE-2018-5465

REFERENCES
url:https://ics-cert.us-cert.gov/advisories/icsa-18-065-01
Trust: 3.3
url:http://www.securityfocus.com/bid/103340
Trust: 1.6
url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2018-5465
Trust: 0.8
url:https://nvd.nist.gov/vuln/detail/cve-2018-5465
Trust: 0.8
url:https://www.belden.com/
Trust: 0.3
sources:
            
            
            CNVD: CNVD-2018-04784 // 
            
            
            
            BID: 103340 // 
            
            
            
            JVNDB: JVNDB-2018-002738 // 
            
            
            
            CNNVD: CNNVD-201803-139 // 
            
            
            
            NVD: CVE-2018-5465

CREDITS
Ilya Karpov, Evgeniy Druzhinin, Mikhail Tsvetkov, and Damir Zainullin of Positive Technologies.
Trust: 0.3
sources:
            
            
            BID: 103340

SOURCES
db:IVDid:e2e48a10-39ab-11e9-b994-000c29342cb1
db:CNVDid:CNVD-2018-04784
db:BIDid:103340
db:JVNDBid:JVNDB-2018-002738
db:CNNVDid:CNNVD-201803-139
db:NVDid:CVE-2018-5465

LAST UPDATE DATE
2024-11-23T22:26:26.057000+00:00

SOURCES UPDATE DATE
db:CNVDid:CNVD-2018-04784date:2018-03-09T00:00:00
db:BIDid:103340date:2018-03-06T00:00:00
db:JVNDBid:JVNDB-2018-002738date:2018-04-26T00:00:00
db:CNNVDid:CNNVD-201803-139date:2019-10-17T00:00:00
db:NVDid:CVE-2018-5465date:2024-11-21T04:08:51.183

SOURCES RELEASE DATE
db:IVDid:e2e48a10-39ab-11e9-b994-000c29342cb1date:2018-03-09T00:00:00
db:CNVDid:CNVD-2018-04784date:2018-03-09T00:00:00
db:BIDid:103340date:2018-03-06T00:00:00
db:JVNDBid:JVNDB-2018-002738date:2018-04-26T00:00:00
db:CNNVDid:CNNVD-201803-139date:2018-03-07T00:00:00
db:NVDid:CVE-2018-5465date:2018-03-06T21:29:00.300