Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
CVE Vulnerability Details :
CVE-2018-4833
PUBLISHED
More InfoOfficial Page
Assigner-siemens
Assigner Org ID-cec7a2ec-15b4-4faf-bd53-b40f371f3a77
View Known Exploited Vulnerability (KEV) details
Published At-14 Jun, 2018 | 16:00
Updated At-05 Aug, 2024 | 05:18
Rejected At-
▼CVE Numbering Authority (CNA)

A vulnerability has been identified in RFID 181EIP (All versions), RUGGEDCOM Win (V4.4, V4.5, V5.0, and V5.1), SCALANCE X-200 switch family (incl. SIPLUS NET variants) (All versions < V5.2.3), SCALANCE X-200IRT switch family (incl. SIPLUS NET variants) (All versions < V5.4.1), SCALANCE X-200RNA switch family (All versions < V3.2.6), SCALANCE X-300 switch family (incl. SIPLUS NET variants) (All versions < V4.1.3), SCALANCE X408 (All versions < V4.1.3), SCALANCE X414 (All versions), SIMATIC RF182C (All versions). Unprivileged remote attackers located in the same local network segment (OSI Layer 2) could gain remote code execution on the affected products by sending a specially crafted DHCP response to a client's DHCP request.

Affected Products
Vendor
Siemens AGSiemens
Product
RFID 181EIP
Versions
Affected
  • All versions
Vendor
Siemens AGSiemens
Product
RUGGEDCOM Win
Versions
Affected
  • V4.4, V4.5, V5.0, and V5.1
Vendor
Siemens AGSiemens
Product
SCALANCE X-200 switch family (incl. SIPLUS NET variants)
Versions
Affected
  • All versions < V5.2.3
Vendor
Siemens AGSiemens
Product
SCALANCE X-200IRT switch family (incl. SIPLUS NET variants)
Versions
Affected
  • All versions < V5.4.1
Vendor
Siemens AGSiemens
Product
SCALANCE X-200RNA switch family
Versions
Affected
  • All versions < V3.2.6
Vendor
Siemens AGSiemens
Product
SCALANCE X-300 switch family (incl. SIPLUS NET variants)
Versions
Affected
  • All versions < V4.1.3
Vendor
Siemens AGSiemens
Product
SCALANCE X408
Versions
Affected
  • All versions < V4.1.3
Vendor
Siemens AGSiemens
Product
SCALANCE X414
Versions
Affected
  • All versions
Vendor
Siemens AGSiemens
Product
SIMATIC RF182C
Versions
Affected
  • All versions
Problem Types
TypeCWE IDDescription
CWECWE-122CWE-122: Heap-based Buffer Overflow
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://cert-portal.siemens.com/productcert/pdf/ssa-181018.pdf
x_refsource_MISC
▼Authorized Data Publishers (ADP)
CVE Program Container
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://cert-portal.siemens.com/productcert/pdf/ssa-181018.pdf
x_refsource_MISC
x_transferred
Details not found