Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2015-1048

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2015-1048
Last Modified 23 Jan 2015 04:14:27
Published 21 Jan 2015 12:59:02
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2015-1048

Summary

Open redirect vulnerability in the integrated web server on Siemens SIMATIC S7-1200 CPU devices with firmware before 4.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.

Vulnerable Systems

Operating System

  • Siemens Simatic S7 1200 Cpu Firmware 4.0


References

CONFIRM - http://www.siemens.com/innovation/pool/de/forschungsfelder/siemens_security_advisory_ssa-597212.pdf


Last Updated: 27 May 2016 11:07:36