SSA-431678
Vulnerability from csaf_siemens - Published: 2020-02-11 00:00 - Updated: 2023-01-10 00:00Summary
SSA-431678: Denial of Service Vulnerability in SIMATIC S7 CPU Families
Notes
Summary
SIMATIC S7 CPU families are affected by a vulnerability that could allow remote attackers
to perform a denial of service attack by sending a specially crafted HTTP request to the web server of an
affected device.
Siemens has released updates for several affected products and recommends to update to the latest versions. Siemens recommends specific countermeasures for products where updates are not, or not yet available.
General Recommendations
As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download:
https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.
Additional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity
Additional Resources
For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories
Terms of Use
Siemens Security Advisories are subject to the terms and conditions contained in Siemens' underlying license terms or other applicable agreements previously agreed to with Siemens (hereinafter "License Terms"). To the extent applicable to information, software or documentation made available in or through a Siemens Security Advisory, the Terms of Use of Siemens' Global Website (https://www.siemens.com/terms_of_use, hereinafter "Terms of Use"), in particular Sections 8-10 of the Terms of Use, shall apply additionally. In case of conflicts, the License Terms shall prevail over the Terms of Use.
{
"document": {
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Disclosure is not limited. (TLPv2: TLP:CLEAR)",
"tlp": {
"label": "WHITE"
}
},
"notes": [
{
"category": "summary",
"text": "SIMATIC S7 CPU families are affected by a vulnerability that could allow remote attackers\nto perform a denial of service attack by sending a specially crafted HTTP request to the web server of an\naffected device.\n\nSiemens has released updates for several affected products and recommends to update to the latest versions. Siemens recommends specific countermeasures for products where updates are not, or not yet available.",
"title": "Summary"
},
{
"category": "general",
"text": "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens\u0027 operational guidelines for Industrial Security (Download: \nhttps://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity",
"title": "General Recommendations"
},
{
"category": "general",
"text": "For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories",
"title": "Additional Resources"
},
{
"category": "legal_disclaimer",
"text": "Siemens Security Advisories are subject to the terms and conditions contained in Siemens\u0027 underlying license terms or other applicable agreements previously agreed to with Siemens (hereinafter \"License Terms\"). To the extent applicable to information, software or documentation made available in or through a Siemens Security Advisory, the Terms of Use of Siemens\u0027 Global Website (https://www.siemens.com/terms_of_use, hereinafter \"Terms of Use\"), in particular Sections 8-10 of the Terms of Use, shall apply additionally. In case of conflicts, the License Terms shall prevail over the Terms of Use.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "productcert@siemens.com",
"name": "Siemens ProductCERT",
"namespace": "https://www.siemens.com"
},
"references": [
{
"category": "self",
"summary": "SSA-431678: Denial of Service Vulnerability in SIMATIC S7 CPU Families - PDF Version",
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-431678.pdf"
},
{
"category": "self",
"summary": "SSA-431678: Denial of Service Vulnerability in SIMATIC S7 CPU Families - TXT Version",
"url": "https://cert-portal.siemens.com/productcert/txt/ssa-431678.txt"
},
{
"category": "self",
"summary": "SSA-431678: Denial of Service Vulnerability in SIMATIC S7 CPU Families - CSAF Version",
"url": "https://cert-portal.siemens.com/productcert/csaf/ssa-431678.json"
}
],
"title": "SSA-431678: Denial of Service Vulnerability in SIMATIC S7 CPU Families",
"tracking": {
"current_release_date": "2023-01-10T00:00:00Z",
"generator": {
"engine": {
"name": "Siemens ProductCERT CSAF Generator",
"version": "1"
}
},
"id": "SSA-431678",
"initial_release_date": "2020-02-11T00:00:00Z",
"revision_history": [
{
"date": "2020-02-11T00:00:00Z",
"legacy_version": "1.0",
"number": "1",
"summary": "Publication Date"
},
{
"date": "2020-03-10T00:00:00Z",
"legacy_version": "1.1",
"number": "2",
"summary": "Updated solution for SIMATIC S7-300 PN/DP CPU family"
},
{
"date": "2020-04-14T00:00:00Z",
"legacy_version": "1.2",
"number": "3",
"summary": "Added SIMATIC WinAC RTX to the list of affected products"
},
{
"date": "2022-08-09T00:00:00Z",
"legacy_version": "1.3",
"number": "4",
"summary": "No fix planned for SIMATIC S7-400 PN/DP V6 and below CPU family"
},
{
"date": "2023-01-10T00:00:00Z",
"legacy_version": "1.4",
"number": "5",
"summary": "No fix planned for remaining products. SIMATIC S7-300 CPU family expanded with product specific designations, patch links and MLFBs"
}
],
"status": "final",
"version": "5"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c V3.X.17",
"product": {
"name": "SIMATIC ET 200pro IM154-8 PN/DP CPU (6ES7154-8AB01-0AB0)",
"product_id": "1",
"product_identification_helper": {
"model_numbers": [
"6ES7154-8AB01-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200pro IM154-8 PN/DP CPU (6ES7154-8AB01-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c V3.X.17",
"product": {
"name": "SIMATIC ET 200pro IM154-8F PN/DP CPU (6ES7154-8FB01-0AB0)",
"product_id": "2",
"product_identification_helper": {
"model_numbers": [
"6ES7154-8FB01-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200pro IM154-8F PN/DP CPU (6ES7154-8FB01-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c V3.X.17",
"product": {
"name": "SIMATIC ET 200pro IM154-8FX PN/DP CPU (6ES7154-8FX00-0AB0)",
"product_id": "3",
"product_identification_helper": {
"model_numbers": [
"6ES7154-8FX00-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200pro IM154-8FX PN/DP CPU (6ES7154-8FX00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c V3.X.17",
"product": {
"name": "SIMATIC ET 200S IM151-8 PN/DP CPU (6ES7151-8AB01-0AB0)",
"product_id": "4",
"product_identification_helper": {
"model_numbers": [
"6ES7151-8AB01-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200S IM151-8 PN/DP CPU (6ES7151-8AB01-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c V3.X.17",
"product": {
"name": "SIMATIC ET 200S IM151-8F PN/DP CPU (6ES7151-8FB01-0AB0)",
"product_id": "5",
"product_identification_helper": {
"model_numbers": [
"6ES7151-8FB01-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200S IM151-8F PN/DP CPU (6ES7151-8FB01-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c V4.1",
"product": {
"name": "SIMATIC S7-1200 CPU family (incl. SIPLUS variants)",
"product_id": "6"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1200 CPU family (incl. SIPLUS variants)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c V3.X.17",
"product": {
"name": "SIMATIC S7-300 CPU 314C-2 PN/DP (6ES7314-6EH04-0AB0)",
"product_id": "7",
"product_identification_helper": {
"model_numbers": [
"6ES7314-6EH04-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-300 CPU 314C-2 PN/DP (6ES7314-6EH04-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c V3.X.17",
"product": {
"name": "SIMATIC S7-300 CPU 315-2 PN/DP (6ES7315-2EH14-0AB0)",
"product_id": "8",
"product_identification_helper": {
"model_numbers": [
"6ES7315-2EH14-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-300 CPU 315-2 PN/DP (6ES7315-2EH14-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c V3.X.17",
"product": {
"name": "SIMATIC S7-300 CPU 315F-2 PN/DP (6ES7315-2FJ14-0AB0)",
"product_id": "9",
"product_identification_helper": {
"model_numbers": [
"6ES7315-2FJ14-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-300 CPU 315F-2 PN/DP (6ES7315-2FJ14-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c V3.X.17",
"product": {
"name": "SIMATIC S7-300 CPU 315T-3 PN/DP (6ES7315-7TJ10-0AB0)",
"product_id": "10",
"product_identification_helper": {
"model_numbers": [
"6ES7315-7TJ10-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-300 CPU 315T-3 PN/DP (6ES7315-7TJ10-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c V3.X.17",
"product": {
"name": "SIMATIC S7-300 CPU 317-2 PN/DP (6ES7317-2EK14-0AB0)",
"product_id": "11",
"product_identification_helper": {
"model_numbers": [
"6ES7317-2EK14-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-300 CPU 317-2 PN/DP (6ES7317-2EK14-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c V3.X.17",
"product": {
"name": "SIMATIC S7-300 CPU 317F-2 PN/DP (6ES7317-2FK14-0AB0)",
"product_id": "12",
"product_identification_helper": {
"model_numbers": [
"6ES7317-2FK14-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-300 CPU 317F-2 PN/DP (6ES7317-2FK14-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c V3.X.17",
"product": {
"name": "SIMATIC S7-300 CPU 317T-3 PN/DP (6ES7317-7TK10-0AB0)",
"product_id": "13",
"product_identification_helper": {
"model_numbers": [
"6ES7317-7TK10-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-300 CPU 317T-3 PN/DP (6ES7317-7TK10-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c V3.X.17",
"product": {
"name": "SIMATIC S7-300 CPU 317TF-3 PN/DP (6ES7317-7UL10-0AB0)",
"product_id": "14",
"product_identification_helper": {
"model_numbers": [
"6ES7317-7UL10-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-300 CPU 317TF-3 PN/DP (6ES7317-7UL10-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c V3.X.17",
"product": {
"name": "SIMATIC S7-300 CPU 319-3 PN/DP (6ES7318-3EL01-0AB0)",
"product_id": "15",
"product_identification_helper": {
"model_numbers": [
"6ES7318-3EL01-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-300 CPU 319-3 PN/DP (6ES7318-3EL01-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c V3.X.17",
"product": {
"name": "SIMATIC S7-300 CPU 319F-3 PN/DP (6ES7318-3FL01-0AB0)",
"product_id": "16",
"product_identification_helper": {
"model_numbers": [
"6ES7318-3FL01-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-300 CPU 319F-3 PN/DP (6ES7318-3FL01-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/*",
"product": {
"name": "SIMATIC S7-400 PN/DP V6 and below CPU family (incl. SIPLUS variants)",
"product_id": "17"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-400 PN/DP V6 and below CPU family (incl. SIPLUS variants)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/*",
"product": {
"name": "SIMATIC S7-400 PN/DP V7 CPU family (incl. SIPLUS variants)",
"product_id": "18"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-400 PN/DP V7 CPU family (incl. SIPLUS variants)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/*",
"product": {
"name": "SIMATIC WinAC RTX 2010 (6ES7671-0RC08-0YA0)",
"product_id": "19",
"product_identification_helper": {
"model_numbers": [
"6ES7671-0RC08-0YA0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC WinAC RTX 2010 (6ES7671-0RC08-0YA0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/*",
"product": {
"name": "SIMATIC WinAC RTX F 2010 (6ES7671-1RC08-0YA0)",
"product_id": "20",
"product_identification_helper": {
"model_numbers": [
"6ES7671-1RC08-0YA0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC WinAC RTX F 2010 (6ES7671-1RC08-0YA0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c V3.X.17",
"product": {
"name": "SIPLUS ET 200S IM151-8 PN/DP CPU (6AG1151-8AB01-7AB0)",
"product_id": "21",
"product_identification_helper": {
"model_numbers": [
"6AG1151-8AB01-7AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS ET 200S IM151-8 PN/DP CPU (6AG1151-8AB01-7AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c V3.X.17",
"product": {
"name": "SIPLUS ET 200S IM151-8F PN/DP CPU (6AG1151-8FB01-2AB0)",
"product_id": "22",
"product_identification_helper": {
"model_numbers": [
"6AG1151-8FB01-2AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS ET 200S IM151-8F PN/DP CPU (6AG1151-8FB01-2AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c V3.X.17",
"product": {
"name": "SIPLUS S7-300 CPU 314C-2 PN/DP (6AG1314-6EH04-7AB0)",
"product_id": "23",
"product_identification_helper": {
"model_numbers": [
"6AG1314-6EH04-7AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS S7-300 CPU 314C-2 PN/DP (6AG1314-6EH04-7AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c V3.X.17",
"product": {
"name": "SIPLUS S7-300 CPU 315-2 PN/DP (6AG1315-2EH14-7AB0)",
"product_id": "24",
"product_identification_helper": {
"model_numbers": [
"6AG1315-2EH14-7AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS S7-300 CPU 315-2 PN/DP (6AG1315-2EH14-7AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c V3.X.17",
"product": {
"name": "SIPLUS S7-300 CPU 315F-2 PN/DP (6AG1315-2FJ14-2AB0)",
"product_id": "25",
"product_identification_helper": {
"model_numbers": [
"6AG1315-2FJ14-2AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS S7-300 CPU 315F-2 PN/DP (6AG1315-2FJ14-2AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c V3.X.17",
"product": {
"name": "SIPLUS S7-300 CPU 317-2 PN/DP (6AG1317-2EK14-7AB0)",
"product_id": "26",
"product_identification_helper": {
"model_numbers": [
"6AG1317-2EK14-7AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS S7-300 CPU 317-2 PN/DP (6AG1317-2EK14-7AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c V3.X.17",
"product": {
"name": "SIPLUS S7-300 CPU 317F-2 PN/DP (6AG1317-2FK14-2AB0)",
"product_id": "27",
"product_identification_helper": {
"model_numbers": [
"6AG1317-2FK14-2AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS S7-300 CPU 317F-2 PN/DP (6AG1317-2FK14-2AB0)"
}
],
"category": "vendor",
"name": "Siemens"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-13940",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "summary",
"text": "Affected devices contain a vulnerability that could cause a denial of service condition of the web server\r\nby sending specially crafted HTTP requests to ports 80/tcp and 443/tcp.\r\n\r\nBeyond the web service, no other functions or interfaces are affected by the denial of service condition.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5",
"6",
"7",
"8",
"9",
"10",
"11",
"12",
"13",
"14",
"15",
"16",
"17",
"18",
"19",
"20",
"21",
"22",
"23",
"24",
"25",
"26",
"27"
]
},
"remediations": [
{
"category": "mitigation",
"details": "Restrict access to the device to the internal or VPN network and to trusted IP addresses only",
"product_ids": [
"1",
"2",
"3",
"4",
"5",
"6",
"7",
"8",
"9",
"10",
"11",
"12",
"13",
"14",
"15",
"16",
"17",
"18",
"19",
"20",
"21",
"22",
"23",
"24",
"25",
"26",
"27"
]
},
{
"category": "mitigation",
"details": "Disable the web server. Note that this feature is disabled by default",
"product_ids": [
"1",
"2",
"3",
"4",
"5",
"6",
"7",
"8",
"9",
"10",
"11",
"12",
"13",
"14",
"15",
"16",
"17",
"18",
"19",
"20",
"21",
"22",
"23",
"24",
"25",
"26",
"27"
]
},
{
"category": "mitigation",
"details": "Restrict access to the web server (80/tcp, 443/tcp) to trusted IP addresses",
"product_ids": [
"1",
"2",
"3",
"4",
"5",
"6",
"7",
"8",
"9",
"10",
"11",
"12",
"13",
"14",
"15",
"16",
"17",
"18",
"19",
"20",
"21",
"22",
"23",
"24",
"25",
"26",
"27"
]
},
{
"category": "no_fix_planned",
"details": "Currently no fix is planned",
"product_ids": [
"17",
"18",
"19",
"20"
]
},
{
"category": "vendor_fix",
"details": "Update to V4.1 or later version",
"product_ids": [
"6"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/106200276/"
},
{
"category": "vendor_fix",
"details": "Update to V3.X.17 or later version",
"product_ids": [
"1"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/47354502/"
},
{
"category": "vendor_fix",
"details": "Update to V3.X.17 or later version",
"product_ids": [
"2"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/47354578/"
},
{
"category": "vendor_fix",
"details": "Update to V3.X.17 or later version",
"product_ids": [
"3"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/62612377/"
},
{
"category": "vendor_fix",
"details": "Update to V3.X.17 or later version",
"product_ids": [
"4",
"21"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/47353723/"
},
{
"category": "vendor_fix",
"details": "Update to V3.X.17 or later version",
"product_ids": [
"5",
"22"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/47354354/"
},
{
"category": "vendor_fix",
"details": "Update to V3.X.17 or later version",
"product_ids": [
"7",
"23"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/51466769/"
},
{
"category": "vendor_fix",
"details": "Update to V3.X.17 or later version",
"product_ids": [
"8",
"24"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/40360647/"
},
{
"category": "vendor_fix",
"details": "Update to V3.X.17 or later version",
"product_ids": [
"9",
"25"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/40944925/"
},
{
"category": "vendor_fix",
"details": "Update to V3.X.17 or later version",
"product_ids": [
"10"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/85049260/"
},
{
"category": "vendor_fix",
"details": "Update to V3.X.17 or later version",
"product_ids": [
"11",
"26"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/40362228/"
},
{
"category": "vendor_fix",
"details": "Update to V3.X.17 or later version",
"product_ids": [
"12",
"27"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/40945128/"
},
{
"category": "vendor_fix",
"details": "Update to V3.X.17 or later version",
"product_ids": [
"13"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/85059804/"
},
{
"category": "vendor_fix",
"details": "Update to V3.X.17 or later version",
"product_ids": [
"14"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/85063017/"
},
{
"category": "vendor_fix",
"details": "Update to V3.X.17 or later version",
"product_ids": [
"15"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/44442927/"
},
{
"category": "vendor_fix",
"details": "Update to V3.X.17 or later version",
"product_ids": [
"16"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/44443101/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5",
"6",
"7",
"8",
"9",
"10",
"11",
"12",
"13",
"14",
"15",
"16",
"17",
"18",
"19",
"20",
"21",
"22",
"23",
"24",
"25",
"26",
"27"
]
}
],
"title": "CVE-2019-13940"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…