CVE-2018-4856
Summary
| CVE | CVE-2018-4856 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2018-07-03 14:29:00 UTC |
| Updated | 2019-10-09 23:41:00 UTC |
| Description | A vulnerability has been identified in SICLOCK TC100 (All versions) and SICLOCK TC400 (All versions). An attacker with administrative access to the device's management interface could lock out legitimate users. Manual interaction is required to restore the access of legitimate users. |
Risk And Classification
Problem Types: NVD-CWE-noinfo
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Siemens | Siclock Tc100 | - | All | All | All |
| Hardware | Siemens | Siclock Tc100 | - | All | All | All |
| Operating System | Siemens | Siclock Tc100 Firmware | - | All | All | All |
| Operating System | Siemens | Siclock Tc100 Firmware | - | All | All | All |
| Hardware | Siemens | Siclock Tc400 | - | All | All | All |
| Hardware | Siemens | Siclock Tc400 | - | All | All | All |
| Operating System | Siemens | Siclock Tc400 Firmware | - | All | All | All |
| Operating System | Siemens | Siclock Tc400 Firmware | - | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| cert-portal.siemens.com/productcert/pdf/ssa-197012.pdf | CONFIRM | cert-portal.siemens.com | Mitigation, Vendor Advisory |
| Siemens SICLOCK TC Devices Multiple Security Vulnerabilities | BID | www.securityfocus.com | Third Party Advisory, VDB Entry |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
Legacy QID Mappings
- 591262 Siemens SICLOCK Denial of Service (DoS) Multiple Vulnerabilities (SSA-197012)