Details of VAR-201902-0883

ID

VAR-201902-0883

TITLE

KingSCADA 3.7 has a release and reuse vulnerability

Trust: 0.6

sources: CNVD: CNVD-2019-05650

DESCRIPTION

KingSCADA is a high-end configuration software developed by Beijing Yakong Technology Development Co., Ltd. KingSCADA 3.7 has a release and reuse vulnerability. An attacker could use this vulnerability to cause a denial of service attack

Trust: 0.72

sources: CNVD: CNVD-2019-05650 // IVD: d3f6feca-cb2f-47e6-9d1e-00ff2f7b49f3

IOT TAXONOMY

category:

['ICS']

sub_category:

Trust: 0.8

sources: IVD: d3f6feca-cb2f-47e6-9d1e-00ff2f7b49f3 // CNVD: CNVD-2019-05650

AFFECTED PRODUCTS

vendor:

yakong

model:

kingscada

scope:

version:

3.7

Trust: 0.8

sources: IVD: d3f6feca-cb2f-47e6-9d1e-00ff2f7b49f3 // CNVD: CNVD-2019-05650

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD:	CNVD-2019-05650
value:	MEDIUM
Trust: 0.6
IVD:	d3f6feca-cb2f-47e6-9d1e-00ff2f7b49f3
value:	MEDIUM
Trust: 0.2

CNVD:	CNVD-2019-05650
severity:	MEDIUM
baseScore:	4.9
vectorString:	AV:L/AC:L/AU:N/C:N/I:N/A:C
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	COMPLETE
exploitabilityScore:	3.9
impactScore:	6.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6
IVD:	d3f6feca-cb2f-47e6-9d1e-00ff2f7b49f3
severity:	MEDIUM
baseScore:	4.9
vectorString:	AV:L/AC:L/AU:N/C:N/I:N/A:C
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	COMPLETE
exploitabilityScore:	3.9
impactScore:	6.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.9 [IVD]
Trust: 0.2

sources: IVD: d3f6feca-cb2f-47e6-9d1e-00ff2f7b49f3 // CNVD: CNVD-2019-05650

TYPE

Denial of service

Trust: 0.2

sources: IVD: d3f6feca-cb2f-47e6-9d1e-00ff2f7b49f3

EXTERNAL IDS

db:	CNVD	id:	CNVD-2019-05650	Trust: 0.8
db:	IVD	id:	D3F6FECA-CB2F-47E6-9D1E-00FF2F7B49F3	Trust: 0.2

sources: IVD: d3f6feca-cb2f-47e6-9d1e-00ff2f7b49f3 // CNVD: CNVD-2019-05650

SOURCES

db:	IVD	id:	d3f6feca-cb2f-47e6-9d1e-00ff2f7b49f3
db:	CNVD	id:	CNVD-2019-05650

LAST UPDATE DATE

2022-05-17T01:36:11.524000+00:00

SOURCES UPDATE DATE

db:

CNVD

id:

CNVD-2019-05650

date:

2019-02-28T00:00:00

SOURCES RELEASE DATE

db:	IVD	id:	d3f6feca-cb2f-47e6-9d1e-00ff2f7b49f3	date:	2019-02-28T00:00:00
db:	CNVD	id:	CNVD-2019-05650	date:	2019-02-22T00:00:00