7.5
CVSSv2

CVE-2019-18296

Published: 12/12/2019 Updated: 18/12/2019
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Summary

A vulnerability has been identified in SPPA-T3000 MS3000 Migration Server (All versions). An attacker with network access to the MS3000 Server could trigger a Denial-of-Service condition and potentially gain remote code execution by sending specifically crafted packets to port 5010/tcp. This vulnerability is independent from CVE-2019-18289, CVE-2019-18293, and CVE-2019-18295. Please note that an attacker needs to have network access to the MS3000 in order to exploit this vulnerability. At the time of advisory publication no public exploitation of this security vulnerability was known.

Vulnerability Trend

Affected Products

Vendor Advisories

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 # SSA-451445: Multiple Vulnerabilities in SPPA-T3000 Publication Date: 2019-12-10 Last Update: 2019-12-10 Current Version: 10 CVSS v31 Base Score: 98 SUMMARY ======= SPPA-T3000 Application Server and MS3000 Migration Server are affected by multiple vulnerabilities ...