Vulnerability Details CVE-2018-4836
A vulnerability has been identified in TeleControl Server Basic < V3.1. An authenticated attacker with a low-privileged account to the TeleControl Server Basic's port 8000/tcp could escalate his privileges and perform administrative operations.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 70.9%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 6.5
References
- http://www.securityfocus.com/bid/102897
- http://www.securityfocus.com/bid/102904
- https://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-651454.pdf
- http://www.securityfocus.com/bid/102897
- http://www.securityfocus.com/bid/102904
- https://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-651454.pdf
Products affected by CVE-2018-4836
-
cpe:2.3:a:siemens:telecontrol_server_basic:3.0