CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2019-6579

A vulnerability has been identified in Spectrum Power 4 (with Web Office Portal). An attacker with network access to the web server on port 80/TCP or 443/TCP could execute system commands with administrative privileges. The security vulnerability could be exploited by an unauthenticated attacker with network access to the affected service. No user interaction is required to exploit this security vulnerability. Successful exploitation of the security vulnerability compromises confidentiality, integrity or availability of the targeted system. At the time of advisory publication no public exploitation of this security vulnerability was known.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.024

EPSS Ranking 84.2%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 7.5

References

http://www.securityfocus.com/bid/107830
https://cert-portal.siemens.com/productcert/pdf/ssa-324467.pdf
http://www.securityfocus.com/bid/107830
https://cert-portal.siemens.com/productcert/pdf/ssa-324467.pdf

Products affected by CVE-2019-6579

Siemens » Spectrum Power 4 » Version: N/A

cpe:2.3:a:siemens:spectrum_power_4:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-6579

Products

Pricing

Contact Us