CVE-2018-17935

Sažetak

All versions of Telecrane F25 Series Radio Controls before 00.0A use fixed codes that are reproducible by sniffing and re-transmission. This can lead to unauthorized replay of a command, spoofing of an arbitrary message, or keeping the controlled load in a permanent "stop" state.

Reference

http://www.securityfocus.com/bid/105732
https://ics-cert.us-cert.gov/advisories/ICSA-18-296-03

CVSS

Base:	4.8
Impact:	4.9
Exploitability:	6.5

Pristup

Vektor	Složenost	Autentikacija
ADJACENT_NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	PARTIAL	PARTIAL

CVSS vektor

AV:A/AC:L/Au:N/C:N/I:P/A:P

Zadnje važnije ažuriranje

18-09-2020 - 17:23

Objavljeno

24-10-2018 - 13:29