Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6.5
CVSSv2

CVE-2019-6581

Published: 12/06/2019 Updated: 16/10/2020
CVSS v2 Base Score: 6.5 | Impact Score: 6.4 | Exploitability Score: 8
CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8
VMScore: 578
Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P
Subscribe to Siveillance Video Management Software 2017 R2

Vulnerability Summary

Siemens Siveillance VMScould allow a remote authenticated malicious user to bypass security restrictions, caused by improper validation of user authorization. By sending a specially-crafted request through TCP port 80, an attacker could exploit this vulnerability to change user roles.

Most Upvoted Vulmon Research Post

There is no Researcher post for this vulnerability
Would you like to share something about it? Sign up now to share your knowledge with the community.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

siemens siveillance video management software 2017 r2

siemens siveillance video management software 2018 r1

siemens siveillance video management software 2018 r2

siemens siveillance video management software 2018 r3

siemens siveillance video management software 2019 r1

Vendor Advisories

Siemens Security Advisories: Siemens Security Advisory
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 # SSA-212009: Vulnerabilities in Siveillance VMS Publication Date: 2019-06-11 Last Update: 2019-06-11 Current Version: 10 CVSS v30 Base Score: 88 SUMMARY ======= The latest update for the Siveillance VMS line fixes three security vulnerabilities that can cause remo ...

ICS Advisories

Siemens Siveillance VMS
Critical Infrastructure Sectors: Critical Manufacturing, Commercial Facilities

References

NVD-CWE-Otherhttps://cert-portal.siemens.com/productcert/pdf/ssa-212009.pdfhttps://ics-cert.us-cert.gov/advisories/ICSA-19-162-01https://nvd.nist.govhttps://exchange.xforce.ibmcloud.com/vulnerabilities/162407https://ics-cert.us-cert.gov/advisories/ICSA-19-162-01
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
unspecifiedbuffer overflowCVE-2021-0404microsoftrace conditionCVE-2021-23965CVE-2021-21298CVE-2021-24093CVE-2021-21724CVE-2021-25281.net