CVE-2021-37182
Vulnerability from cvelistv5
Published
2022-06-14 09:21
Modified
2024-08-04 01:16
Severity ?
EPSS score ?
Summary
A vulnerability has been identified in SCALANCE XM408-4C (All versions < V6.5), SCALANCE XM408-4C (L3 int.) (All versions < V6.5), SCALANCE XM408-8C (All versions < V6.5), SCALANCE XM408-8C (L3 int.) (All versions < V6.5), SCALANCE XM416-4C (All versions < V6.5), SCALANCE XM416-4C (L3 int.) (All versions < V6.5), SCALANCE XR524-8C, 1x230V (All versions < V6.5), SCALANCE XR524-8C, 1x230V (L3 int.) (All versions < V6.5), SCALANCE XR524-8C, 24V (All versions < V6.5), SCALANCE XR524-8C, 24V (L3 int.) (All versions < V6.5), SCALANCE XR524-8C, 2x230V (All versions < V6.5), SCALANCE XR524-8C, 2x230V (L3 int.) (All versions < V6.5), SCALANCE XR526-8C, 1x230V (All versions < V6.5), SCALANCE XR526-8C, 1x230V (L3 int.) (All versions < V6.5), SCALANCE XR526-8C, 24V (All versions < V6.5), SCALANCE XR526-8C, 24V (L3 int.) (All versions < V6.5), SCALANCE XR526-8C, 2x230V (All versions < V6.5), SCALANCE XR526-8C, 2x230V (L3 int.) (All versions < V6.5), SCALANCE XR528-6M (All versions < V6.5), SCALANCE XR528-6M (2HR2) (All versions < V6.5), SCALANCE XR528-6M (2HR2, L3 int.) (All versions < V6.5), SCALANCE XR528-6M (L3 int.) (All versions < V6.5), SCALANCE XR552-12M (All versions < V6.5), SCALANCE XR552-12M (2HR2) (All versions < V6.5), SCALANCE XR552-12M (2HR2) (All versions < V6.5), SCALANCE XR552-12M (2HR2, L3 int.) (All versions < V6.5). The OSPF protocol implementation in affected devices fails to verify the checksum and length fields in the OSPF LS Update messages. An unauthenticated remote attacker could exploit this vulnerability to cause interruptions in the network by sending specially crafted OSPF packets. Successful exploitation requires OSPF to be enabled on an affected device.
References
▼ | URL | Tags | |
---|---|---|---|
productcert@siemens.com | https://cert-portal.siemens.com/productcert/pdf/ssa-145224.pdf | Patch, Vendor Advisory |
Impacted products
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-04T01:16:03.731Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "tags": [ "x_refsource_MISC", "x_transferred" ], "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-145224.pdf" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "product": "SCALANCE XM408-4C", "vendor": "Siemens", "versions": [ { "status": "affected", "version": "All versions \u003c V6.5" } ] }, { "product": "SCALANCE XM408-4C (L3 int.)", "vendor": "Siemens", "versions": [ { "status": "affected", "version": "All versions \u003c V6.5" } ] }, { "product": "SCALANCE XM408-8C", "vendor": "Siemens", "versions": [ { "status": "affected", "version": "All versions \u003c V6.5" } ] }, { "product": "SCALANCE XM408-8C (L3 int.)", "vendor": "Siemens", "versions": [ { "status": "affected", "version": "All versions \u003c V6.5" } ] }, { "product": "SCALANCE XM416-4C", "vendor": "Siemens", "versions": [ { "status": "affected", "version": "All versions \u003c V6.5" } ] }, { "product": "SCALANCE XM416-4C (L3 int.)", "vendor": "Siemens", "versions": [ { "status": "affected", "version": "All versions \u003c V6.5" } ] }, { "product": "SCALANCE XR524-8C, 1x230V", "vendor": "Siemens", "versions": [ { "status": "affected", "version": "All versions \u003c V6.5" } ] }, { "product": "SCALANCE XR524-8C, 1x230V (L3 int.)", "vendor": "Siemens", "versions": [ { "status": "affected", "version": "All versions \u003c V6.5" } ] }, { "product": "SCALANCE XR524-8C, 24V", "vendor": "Siemens", "versions": [ { "status": "affected", "version": "All versions \u003c V6.5" } ] }, { "product": "SCALANCE XR524-8C, 24V (L3 int.)", "vendor": "Siemens", "versions": [ { "status": "affected", "version": "All versions \u003c V6.5" } ] }, { "product": "SCALANCE XR524-8C, 2x230V", "vendor": "Siemens", "versions": [ { "status": "affected", "version": "All versions \u003c V6.5" } ] }, { "product": "SCALANCE XR524-8C, 2x230V (L3 int.)", "vendor": "Siemens", "versions": [ { "status": "affected", "version": "All versions \u003c V6.5" } ] }, { "product": "SCALANCE XR526-8C, 1x230V", "vendor": "Siemens", "versions": [ { "status": "affected", "version": "All versions \u003c V6.5" } ] }, { "product": "SCALANCE XR526-8C, 1x230V (L3 int.)", "vendor": "Siemens", "versions": [ { "status": "affected", "version": "All versions \u003c V6.5" } ] }, { "product": "SCALANCE XR526-8C, 24V", "vendor": "Siemens", "versions": [ { "status": "affected", "version": "All versions \u003c V6.5" } ] }, { "product": "SCALANCE XR526-8C, 24V (L3 int.)", "vendor": "Siemens", "versions": [ { "status": "affected", "version": "All versions \u003c V6.5" } ] }, { "product": "SCALANCE XR526-8C, 2x230V", "vendor": "Siemens", "versions": [ { "status": "affected", "version": "All versions \u003c V6.5" } ] }, { "product": "SCALANCE XR526-8C, 2x230V (L3 int.)", "vendor": "Siemens", "versions": [ { "status": "affected", "version": "All versions \u003c V6.5" } ] }, { "product": "SCALANCE XR528-6M", "vendor": "Siemens", "versions": [ { "status": "affected", "version": "All versions \u003c V6.5" } ] }, { "product": "SCALANCE XR528-6M (2HR2)", "vendor": "Siemens", "versions": [ { "status": "affected", "version": "All versions \u003c V6.5" } ] }, { "product": "SCALANCE XR528-6M (2HR2, L3 int.)", "vendor": "Siemens", "versions": [ { "status": "affected", "version": "All versions \u003c V6.5" } ] }, { "product": "SCALANCE XR528-6M (L3 int.)", "vendor": "Siemens", "versions": [ { "status": "affected", "version": "All versions \u003c V6.5" } ] }, { "product": "SCALANCE XR552-12M", "vendor": "Siemens", "versions": [ { "status": "affected", "version": "All versions \u003c V6.5" } ] }, { "product": "SCALANCE XR552-12M (2HR2)", "vendor": "Siemens", "versions": [ { "status": "affected", "version": "All versions \u003c V6.5" } ] }, { "product": "SCALANCE XR552-12M (2HR2)", "vendor": "Siemens", "versions": [ { "status": "affected", "version": "All versions \u003c V6.5" } ] }, { "product": "SCALANCE XR552-12M (2HR2, L3 int.)", "vendor": "Siemens", "versions": [ { "status": "affected", "version": "All versions \u003c V6.5" } ] } ], "descriptions": [ { "lang": "en", "value": "A vulnerability has been identified in SCALANCE XM408-4C (All versions \u003c V6.5), SCALANCE XM408-4C (L3 int.) (All versions \u003c V6.5), SCALANCE XM408-8C (All versions \u003c V6.5), SCALANCE XM408-8C (L3 int.) (All versions \u003c V6.5), SCALANCE XM416-4C (All versions \u003c V6.5), SCALANCE XM416-4C (L3 int.) (All versions \u003c V6.5), SCALANCE XR524-8C, 1x230V (All versions \u003c V6.5), SCALANCE XR524-8C, 1x230V (L3 int.) (All versions \u003c V6.5), SCALANCE XR524-8C, 24V (All versions \u003c V6.5), SCALANCE XR524-8C, 24V (L3 int.) (All versions \u003c V6.5), SCALANCE XR524-8C, 2x230V (All versions \u003c V6.5), SCALANCE XR524-8C, 2x230V (L3 int.) (All versions \u003c V6.5), SCALANCE XR526-8C, 1x230V (All versions \u003c V6.5), SCALANCE XR526-8C, 1x230V (L3 int.) (All versions \u003c V6.5), SCALANCE XR526-8C, 24V (All versions \u003c V6.5), SCALANCE XR526-8C, 24V (L3 int.) (All versions \u003c V6.5), SCALANCE XR526-8C, 2x230V (All versions \u003c V6.5), SCALANCE XR526-8C, 2x230V (L3 int.) (All versions \u003c V6.5), SCALANCE XR528-6M (All versions \u003c V6.5), SCALANCE XR528-6M (2HR2) (All versions \u003c V6.5), SCALANCE XR528-6M (2HR2, L3 int.) (All versions \u003c V6.5), SCALANCE XR528-6M (L3 int.) (All versions \u003c V6.5), SCALANCE XR552-12M (All versions \u003c V6.5), SCALANCE XR552-12M (2HR2) (All versions \u003c V6.5), SCALANCE XR552-12M (2HR2) (All versions \u003c V6.5), SCALANCE XR552-12M (2HR2, L3 int.) (All versions \u003c V6.5). The OSPF protocol implementation in affected devices fails to verify the checksum and length fields in the OSPF LS Update messages. An unauthenticated remote attacker could exploit this vulnerability to cause interruptions in the network by sending specially crafted OSPF packets. Successful exploitation requires OSPF to be enabled on an affected device." } ], "problemTypes": [ { "descriptions": [ { "cweId": "CWE-354", "description": "CWE-354: Improper Validation of Integrity Check Value", "lang": "en", "type": "CWE" } ] } ], "providerMetadata": { "dateUpdated": "2022-06-14T09:21:24", "orgId": "cec7a2ec-15b4-4faf-bd53-b40f371f3a77", "shortName": "siemens" }, "references": [ { "tags": [ "x_refsource_MISC" ], "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-145224.pdf" } ], "x_legacyV4Record": { "CVE_data_meta": { "ASSIGNER": "productcert@siemens.com", "ID": "CVE-2021-37182", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "SCALANCE XM408-4C", "version": { "version_data": [ { "version_value": "All versions \u003c V6.5" } ] } }, { "product_name": "SCALANCE XM408-4C (L3 int.)", "version": { "version_data": [ { "version_value": "All versions \u003c V6.5" } ] } }, { "product_name": "SCALANCE XM408-8C", "version": { "version_data": [ { "version_value": "All versions \u003c V6.5" } ] } }, { "product_name": "SCALANCE XM408-8C (L3 int.)", "version": { "version_data": [ { "version_value": "All versions \u003c V6.5" } ] } }, { "product_name": "SCALANCE XM416-4C", "version": { "version_data": [ { "version_value": "All versions \u003c V6.5" } ] } }, { "product_name": "SCALANCE XM416-4C (L3 int.)", "version": { "version_data": [ { "version_value": "All versions \u003c V6.5" } ] } }, { "product_name": "SCALANCE XR524-8C, 1x230V", "version": { "version_data": [ { "version_value": "All versions \u003c V6.5" } ] } }, { "product_name": "SCALANCE XR524-8C, 1x230V (L3 int.)", "version": { "version_data": [ { "version_value": "All versions \u003c V6.5" } ] } }, { "product_name": "SCALANCE XR524-8C, 24V", "version": { "version_data": [ { "version_value": "All versions \u003c V6.5" } ] } }, { "product_name": "SCALANCE XR524-8C, 24V (L3 int.)", "version": { "version_data": [ { "version_value": "All versions \u003c V6.5" } ] } }, { "product_name": "SCALANCE XR524-8C, 2x230V", "version": { "version_data": [ { "version_value": "All versions \u003c V6.5" } ] } }, { "product_name": "SCALANCE XR524-8C, 2x230V (L3 int.)", "version": { "version_data": [ { "version_value": "All versions \u003c V6.5" } ] } }, { "product_name": "SCALANCE XR526-8C, 1x230V", "version": { "version_data": [ { "version_value": "All versions \u003c V6.5" } ] } }, { "product_name": "SCALANCE XR526-8C, 1x230V (L3 int.)", "version": { "version_data": [ { "version_value": "All versions \u003c V6.5" } ] } }, { "product_name": "SCALANCE XR526-8C, 24V", "version": { "version_data": [ { "version_value": "All versions \u003c V6.5" } ] } }, { "product_name": "SCALANCE XR526-8C, 24V (L3 int.)", "version": { "version_data": [ { "version_value": "All versions \u003c V6.5" } ] } }, { "product_name": "SCALANCE XR526-8C, 2x230V", "version": { "version_data": [ { "version_value": "All versions \u003c V6.5" } ] } }, { "product_name": "SCALANCE XR526-8C, 2x230V (L3 int.)", "version": { "version_data": [ { "version_value": "All versions \u003c V6.5" } ] } }, { "product_name": "SCALANCE XR528-6M", "version": { "version_data": [ { "version_value": "All versions \u003c V6.5" } ] } }, { "product_name": "SCALANCE XR528-6M (2HR2)", "version": { "version_data": [ { "version_value": "All versions \u003c V6.5" } ] } }, { "product_name": "SCALANCE XR528-6M (2HR2, L3 int.)", "version": { "version_data": [ { "version_value": "All versions \u003c V6.5" } ] } }, { "product_name": "SCALANCE XR528-6M (L3 int.)", "version": { "version_data": [ { "version_value": "All versions \u003c V6.5" } ] } }, { "product_name": "SCALANCE XR552-12M", "version": { "version_data": [ { "version_value": "All versions \u003c V6.5" } ] } }, { "product_name": "SCALANCE XR552-12M (2HR2)", "version": { "version_data": [ { "version_value": "All versions \u003c V6.5" } ] } }, { "product_name": "SCALANCE XR552-12M (2HR2)", "version": { "version_data": [ { "version_value": "All versions \u003c V6.5" } ] } }, { "product_name": "SCALANCE XR552-12M (2HR2, L3 int.)", "version": { "version_data": [ { "version_value": "All versions \u003c V6.5" } ] } } ] }, "vendor_name": "Siemens" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "A vulnerability has been identified in SCALANCE XM408-4C (All versions \u003c V6.5), SCALANCE XM408-4C (L3 int.) (All versions \u003c V6.5), SCALANCE XM408-8C (All versions \u003c V6.5), SCALANCE XM408-8C (L3 int.) (All versions \u003c V6.5), SCALANCE XM416-4C (All versions \u003c V6.5), SCALANCE XM416-4C (L3 int.) (All versions \u003c V6.5), SCALANCE XR524-8C, 1x230V (All versions \u003c V6.5), SCALANCE XR524-8C, 1x230V (L3 int.) (All versions \u003c V6.5), SCALANCE XR524-8C, 24V (All versions \u003c V6.5), SCALANCE XR524-8C, 24V (L3 int.) (All versions \u003c V6.5), SCALANCE XR524-8C, 2x230V (All versions \u003c V6.5), SCALANCE XR524-8C, 2x230V (L3 int.) (All versions \u003c V6.5), SCALANCE XR526-8C, 1x230V (All versions \u003c V6.5), SCALANCE XR526-8C, 1x230V (L3 int.) (All versions \u003c V6.5), SCALANCE XR526-8C, 24V (All versions \u003c V6.5), SCALANCE XR526-8C, 24V (L3 int.) (All versions \u003c V6.5), SCALANCE XR526-8C, 2x230V (All versions \u003c V6.5), SCALANCE XR526-8C, 2x230V (L3 int.) (All versions \u003c V6.5), SCALANCE XR528-6M (All versions \u003c V6.5), SCALANCE XR528-6M (2HR2) (All versions \u003c V6.5), SCALANCE XR528-6M (2HR2, L3 int.) (All versions \u003c V6.5), SCALANCE XR528-6M (L3 int.) (All versions \u003c V6.5), SCALANCE XR552-12M (All versions \u003c V6.5), SCALANCE XR552-12M (2HR2) (All versions \u003c V6.5), SCALANCE XR552-12M (2HR2) (All versions \u003c V6.5), SCALANCE XR552-12M (2HR2, L3 int.) (All versions \u003c V6.5). The OSPF protocol implementation in affected devices fails to verify the checksum and length fields in the OSPF LS Update messages. An unauthenticated remote attacker could exploit this vulnerability to cause interruptions in the network by sending specially crafted OSPF packets. Successful exploitation requires OSPF to be enabled on an affected device." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "CWE-354: Improper Validation of Integrity Check Value" } ] } ] }, "references": { "reference_data": [ { "name": "https://cert-portal.siemens.com/productcert/pdf/ssa-145224.pdf", "refsource": "MISC", "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-145224.pdf" } ] } } } }, "cveMetadata": { "assignerOrgId": "cec7a2ec-15b4-4faf-bd53-b40f371f3a77", "assignerShortName": "siemens", "cveId": "CVE-2021-37182", "datePublished": "2022-06-14T09:21:24", "dateReserved": "2021-07-21T00:00:00", "dateUpdated": "2024-08-04T01:16:03.731Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1", "meta": { "nvd": "{\"cve\":{\"id\":\"CVE-2021-37182\",\"sourceIdentifier\":\"productcert@siemens.com\",\"published\":\"2022-06-14T10:15:17.747\",\"lastModified\":\"2022-06-27T17:40:10.977\",\"vulnStatus\":\"Analyzed\",\"descriptions\":[{\"lang\":\"en\",\"value\":\"A vulnerability has been identified in SCALANCE XM408-4C (All versions \u003c V6.5), SCALANCE XM408-4C (L3 int.) (All versions \u003c V6.5), SCALANCE XM408-8C (All versions \u003c V6.5), SCALANCE XM408-8C (L3 int.) (All versions \u003c V6.5), SCALANCE XM416-4C (All versions \u003c V6.5), SCALANCE XM416-4C (L3 int.) (All versions \u003c V6.5), SCALANCE XR524-8C, 1x230V (All versions \u003c V6.5), SCALANCE XR524-8C, 1x230V (L3 int.) (All versions \u003c V6.5), SCALANCE XR524-8C, 24V (All versions \u003c V6.5), SCALANCE XR524-8C, 24V (L3 int.) (All versions \u003c V6.5), SCALANCE XR524-8C, 2x230V (All versions \u003c V6.5), SCALANCE XR524-8C, 2x230V (L3 int.) (All versions \u003c V6.5), SCALANCE XR526-8C, 1x230V (All versions \u003c V6.5), SCALANCE XR526-8C, 1x230V (L3 int.) (All versions \u003c V6.5), SCALANCE XR526-8C, 24V (All versions \u003c V6.5), SCALANCE XR526-8C, 24V (L3 int.) (All versions \u003c V6.5), SCALANCE XR526-8C, 2x230V (All versions \u003c V6.5), SCALANCE XR526-8C, 2x230V (L3 int.) (All versions \u003c V6.5), SCALANCE XR528-6M (All versions \u003c V6.5), SCALANCE XR528-6M (2HR2) (All versions \u003c V6.5), SCALANCE XR528-6M (2HR2, L3 int.) (All versions \u003c V6.5), SCALANCE XR528-6M (L3 int.) (All versions \u003c V6.5), SCALANCE XR552-12M (All versions \u003c V6.5), SCALANCE XR552-12M (2HR2) (All versions \u003c V6.5), SCALANCE XR552-12M (2HR2) (All versions \u003c V6.5), SCALANCE XR552-12M (2HR2, L3 int.) (All versions \u003c V6.5). The OSPF protocol implementation in affected devices fails to verify the checksum and length fields in the OSPF LS Update messages. An unauthenticated remote attacker could exploit this vulnerability to cause interruptions in the network by sending specially crafted OSPF packets. Successful exploitation requires OSPF to be enabled on an affected device.\"},{\"lang\":\"es\",\"value\":\"Se ha identificado una vulnerabilidad en SCALANCE XM408-4C (Todas las versiones anteriores a V6.5), SCALANCE XM408-4C (L3 int.) (Todas las versiones anteriores a V6.5), SCALANCE XM408-8C (Todas las versiones anteriores a V6. 5), SCALANCE XM408-8C (L3 int.) (Todas las versiones anteriores a V6.5), SCALANCE XM416-4C (Todas las versiones anteriores a V6.5), SCALANCE XM416-4C (L3 int.) (Todas las versiones anteriores a V6.5), SCALANCE XR524-8C, 1x230V (Todas las versiones anteriores a V6. 5), SCALANCE XR524-8C, 1x230V (L3 int.) (Todas las versiones anteriores a V6.5), SCALANCE XR524-8C, 24V (Todas las versiones anteriores a V6.5), SCALANCE XR524-8C, 24V (L3 int.) (Todas las versiones anteriores a V6. 5), SCALANCE XR524-8C, 2x230V (Todas las versiones anteriores a V6.5), SCALANCE XR524-8C, 2x230V (L3 int.) (Todas las versiones anteriores a V6.5), SCALANCE XR526-8C, 1x230V (Todas las versiones anteriores a V6. 5), SCALANCE XR526-8C, 1x230V (L3 int.) (Todas las versiones anteriores a V6.5), SCALANCE XR526-8C, 24V (Todas las versiones anteriores a V6.5), SCALANCE XR526-8C, 24V (L3 int.) (Todas las versiones anteriores a V6. 5), SCALANCE XR526-8C, 2x230V (Todas las versiones anteriores a V6.5), SCALANCE XR526-8C, 2x230V (L3 int.) (Todas las versiones anteriores a V6.5), SCALANCE XR528-6M (Todas las versiones anteriores a V6. 5), SCALANCE XR528-6M (2HR2) (Todas las versiones anteriores a V6.5), SCALANCE XR528-6M (2HR2, L3 int.) (Todas las versiones anteriores a V6.5), SCALANCE XR528-6M (L3 int.) (Todas las versiones anteriores a V6.5), SCALANCE XR552-12M (Todas las versiones anteriores a V6. 5), SCALANCE XR552-12M (2HR2) (Todas las versiones anteriores a V6.5), SCALANCE XR552-12M (2HR2) (Todas las versiones anteriores a V6.5), SCALANCE XR552-12M (2HR2, L3 int.) (Todas las versiones anteriores a V6.5). Una implementaci\u00f3n del protocolo OSPF en los dispositivos afectados no verifica los campos de suma de comprobaci\u00f3n y longitud en los mensajes de actualizaci\u00f3n OSPF LS. Un atacante remoto no autenticado podr\u00eda explotar esta vulnerabilidad para causar interrupciones en la red mediante el env\u00edo de paquetes OSPF especialmente dise\u00f1ados. Una explotaci\u00f3n con \u00e9xito requiere que OSPF est\u00e9 habilitado en un dispositivo afectado\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:N/I:N/A:P\",\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"PARTIAL\",\"baseScore\":4.3},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-354\"}]},{\"source\":\"productcert@siemens.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-354\"}]}],\"configurations\":[{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:scalance_xm408-4c_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"6.5\",\"matchCriteriaId\":\"64EED7C6-F786-47B5-BB49-E7155DE390F8\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:scalance_xm408-4c:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2AA81823-013F-4990-B62D-86C404F04BCB\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:scalance_xm408-4c_l3_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"6.5\",\"matchCriteriaId\":\"B9BDA5C5-F6C7-46D7-B097-E1F9FD910FFA\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:scalance_xm408-4c_l3:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B2FB222B-0414-4A1E-8BBD-6470CDB3BFF8\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:scalance_xm408-8c_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"6.5\",\"matchCriteriaId\":\"AF98A538-D25B-49ED-9236-62C99C252DBB\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:scalance_xm408-8c:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7096DBA5-95BB-44D7-B7CA-B1845C87F70E\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:scalance_xm408-8c_l3_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"6.5\",\"matchCriteriaId\":\"9408678E-8089-4C59-A4CE-CF154F751B47\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:scalance_xm408-8c_l3:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"78562689-B494-4500-9725-B418F1EC3CAB\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:scalance_xm416-4c_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"6.5\",\"matchCriteriaId\":\"6138C0B8-8F13-4B84-A1AA-68AA985831C2\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:scalance_xm416-4c:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F9102A41-5812-4014-BC07-E571E815ED49\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:scalance_xm416-4c_l3_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"6.5\",\"matchCriteriaId\":\"37117F26-5D6E-48A9-8082-B6C55F1D5B15\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:scalance_xm416-4c_l3:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"86A2A766-9046-484F-9D49-4A1F4F0F96A4\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:scalance_xr524-8c_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"6.5\",\"matchCriteriaId\":\"A443F321-A033-4907-A550-8F60B159FF74\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:scalance_xr524-8c:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B0E6B7D8-3F9E-43D6-AEFE-DEE3993679C5\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:scalance_xr524-8c_firmware:*:*:*:*:*:*:1x230v:*\",\"versionEndExcluding\":\"6.5\",\"matchCriteriaId\":\"1F5BBC7B-7DD7-4BC9-BFE8-6CC5417E0FD6\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:scalance_xr524-8c:-:*:*:*:*:*:1x230v:*\",\"matchCriteriaId\":\"FF0A716B-D10B-4FE1-825B-1762BF4FD6C3\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:scalance_xr524-8c_firmware:*:*:*:*:*:*:24v:*\",\"versionEndExcluding\":\"6.5\",\"matchCriteriaId\":\"E32A8F4C-2506-42C9-B10C-9876262B0922\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:scalance_xr524-8c:-:*:*:*:*:*:24v:*\",\"matchCriteriaId\":\"130C059E-45BF-4F91-AA12-E43A905A3AA0\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:scalance_xr524-8c_firmware:*:*:*:*:*:*:2x230v:*\",\"versionEndExcluding\":\"6.5\",\"matchCriteriaId\":\"3A1E27B3-63B3-4A54-B8D4-7A9940542334\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:scalance_xr524-8c:-:*:*:*:*:*:2x230v:*\",\"matchCriteriaId\":\"AC948FB8-A4F5-4AB1-85FF-73F8057D1833\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:scalance_xr524-8c_l3_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"6.5\",\"matchCriteriaId\":\"20A4C70C-19AB-4468-9E78-259686F7F423\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:scalance_xr524-8c_l3:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A1509C8A-89FC-445D-BB22-BF9A811E853B\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:scalance_xr524-8c_l3_firmware:*:*:*:*:*:*:1x230v:*\",\"versionEndExcluding\":\"6.5\",\"matchCriteriaId\":\"2E14C0C1-A35A-489C-AC98-8ADC06850DB9\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:scalance_xr524-8c_l3:-:*:*:*:*:*:1x230v:*\",\"matchCriteriaId\":\"7E773BE4-C263-4141-97CE-9576F9C1893E\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:scalance_xr524-8c_l3_firmware:*:*:*:*:*:*:24v:*\",\"versionEndExcluding\":\"6.5\",\"matchCriteriaId\":\"97D2DFF0-8BAD-4035-ADA9-60BC85D50684\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:scalance_xr524-8c_l3:-:*:*:*:*:*:24v:*\",\"matchCriteriaId\":\"6BCBE8BC-E20F-446F-9927-AC0AA8DCFE20\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:scalance_xr524-8c_l3_firmware:*:*:*:*:*:*:2x230v:*\",\"versionEndExcluding\":\"6.5\",\"matchCriteriaId\":\"9566095A-9A30-4E70-8B97-9E822078913A\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:scalance_xr524-8c_l3:-:*:*:*:*:*:2x230v:*\",\"matchCriteriaId\":\"0D08303B-46E3-4BCE-9149-E140CD6C36D8\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:scalance_xr526-8c_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"6.5\",\"matchCriteriaId\":\"C6C2B305-A305-4181-91E8-61C7E775D594\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:scalance_xr526-8c:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"67661569-6233-4C74-9C72-88BD14B257FE\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:scalance_xr526-8c_firmware:*:*:*:*:*:*:1x230v:*\",\"versionEndExcluding\":\"6.5\",\"matchCriteriaId\":\"3CE80D86-8D7F-4936-85D9-08ED2029CEFD\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:scalance_xr526-8c:-:*:*:*:*:*:1x230v:*\",\"matchCriteriaId\":\"E442796C-5B2D-47FB-9710-760F31025E5C\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:scalance_xr526-8c:-:*:*:*:*:*:24v:*\",\"matchCriteriaId\":\"E22FB2CE-4955-4735-B328-2046090A138C\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:scalance_xr526-8c_firmware:*:*:*:*:*:*:24v:*\",\"versionEndExcluding\":\"6.5\",\"matchCriteriaId\":\"516867B5-487D-4D28-A8D1-E1431C2D4E0F\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:scalance_xr526-8c_firmware:*:*:*:*:*:*:2x230v:*\",\"versionEndExcluding\":\"6.5\",\"matchCriteriaId\":\"7B0778FA-38D8-4AFE-B041-D1E926BC0D78\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:scalance_xr526-8c:-:*:*:*:*:*:2x230v:*\",\"matchCriteriaId\":\"96E5CB55-48A6-47E6-85FB-DB5038317D56\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:scalance_xr526-8c_l3_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"6.5\",\"matchCriteriaId\":\"55633A4C-8163-4649-9ACB-CCEC1C67AD96\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:scalance_xr526-8c_l3:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0921AD23-44BA-4F5C-9DC8-A5F90753C977\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:scalance_xr526-8c_l3_firmware:*:*:*:*:*:*:1x230v:*\",\"versionEndExcluding\":\"6.5\",\"matchCriteriaId\":\"8ED9A986-E257-41AB-8A74-9A52380A7D93\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:scalance_xr526-8c_l3:-:*:*:*:*:*:1x230v:*\",\"matchCriteriaId\":\"2E80012B-1CC4-4C00-B393-7FBD3543B09D\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:scalance_xr526-8c_l3_firmware:*:*:*:*:*:*:24v:*\",\"versionEndExcluding\":\"6.5\",\"matchCriteriaId\":\"DE3C5ECA-C189-47C6-B857-C7139973E9D7\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:scalance_xr526-8c_l3:-:*:*:*:*:*:24v:*\",\"matchCriteriaId\":\"29D6FBAA-DD61-4C6E-9AC1-5FDE37F79670\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:scalance_xr526-8c_l3:-:*:*:*:*:*:2x230v:*\",\"matchCriteriaId\":\"DD503932-A27C-41A2-9695-A96B68612D04\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:scalance_xr526-8c_l3_firmware:*:*:*:*:*:*:2x230v:*\",\"versionEndExcluding\":\"6.5\",\"matchCriteriaId\":\"66DE8998-5B7C-4FAE-9BDD-7F4D7901A0E3\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:scalance_xr528-6m:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3E048C4A-A414-4C87-A865-4D4218AE32EE\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:scalance_xr528-6m_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"6.5\",\"matchCriteriaId\":\"679528E8-1968-4265-96E8-44CA240001E5\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:scalance_xr528-6m_2hr2:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"03DFEC43-5E84-460A-A50E-6BF378E83A70\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:scalance_xr528-6m_2hr2_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"6.5\",\"matchCriteriaId\":\"4BDC142B-BE1C-43B6-B2E2-B492FA303E5C\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:scalance_xr528-6m_2hr2_l3:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FD9EACF0-ECE5-40DD-8280-41707A637E9E\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:scalance_xr528-6m_2hr2_l3_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"6.5\",\"matchCriteriaId\":\"45A62DE9-26B8-446F-BAD9-DA2BB80494D3\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:scalance_xr528-6m_l3:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"81355370-BE69-434F-ABAC-8611F9909E46\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:scalance_xr528-6m_l3_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"6.5\",\"matchCriteriaId\":\"CBFEACD9-25FB-4B09-AC70-98E663369E56\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:scalance_xr552-12m:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4A806691-3F4B-46AA-9718-2F6BF0FD3D7A\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:scalance_xr552-12m_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"6.5\",\"matchCriteriaId\":\"27D96B04-D88E-46D9-9C55-28CA950956A8\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:scalance_xr552-12m_2hr2:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C97B2B53-F40E-4FB1-B3BA-5D0E0F8501F0\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:scalance_xr552-12m_2hr2_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"6.5\",\"matchCriteriaId\":\"7FABA33D-8C0D-4F8B-8FF3-62E1548C417F\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:scalance_xr552-12m_2hr2_l3:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BA9921B1-38FD-4404-9986-3023C577FE5C\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:scalance_xr552-12m_2hr2_l3_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"6.5\",\"matchCriteriaId\":\"DDA815C7-A08C-47FC-8880-E92FB716653D\"}]}]}],\"references\":[{\"url\":\"https://cert-portal.siemens.com/productcert/pdf/ssa-145224.pdf\",\"source\":\"productcert@siemens.com\",\"tags\":[\"Patch\",\"Vendor Advisory\"]}]}}" } }
Loading...
Loading...
Sightings
Author | Source | Type | Date |
---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.