CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-47903

A vulnerability has been identified in InterMesh 7177 Hybrid 2.0 Subscriber (All versions < V8.2.12), InterMesh 7707 Fire Subscriber (All versions < V7.2.12 only if the IP interface is enabled (which is not the default configuration)). The web server of affected devices allows to write arbitrary files to the web server's DocumentRoot directory.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 36.4%

CVSS Severity

CVSS v3 Score 5.8

References

https://cert-portal.siemens.com/productcert/html/ssa-333468.html

Products affected by CVE-2024-47903

Siemens » Intermesh 7177 Hybrid 2.0 Subscriber » Version: N/A

cpe:2.3:h:siemens:intermesh_7177_hybrid_2.0_subscriber:-
Siemens » Intermesh 7707 Fire Subscriber » Version: N/A

cpe:2.3:h:siemens:intermesh_7707_fire_subscriber:-
Siemens » Intermesh 7177 Hybrid 2.0 Subscriber » Version: Any

cpe:2.3:o:siemens:intermesh_7177_hybrid_2.0_subscriber:*
Siemens » Intermesh 7707 Fire Subscriber Firmware » Version: Any

cpe:2.3:o:siemens:intermesh_7707_fire_subscriber_firmware:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-47903

Products

Pricing

Contact Us