V
Scaner-VS
ENRU
HomeCatalogSourcesCWECAPECATT&CKMitigationsProductsVendorsDocs
Back to catalog
BDU:2024-09262
BDU
Medium

Уязвимость менеджера хранения данных Adaptec Maxview промышленных компьютеров SIMATIC IPC1047, SIMATIC IPC1047E, SIMATIC IPC647D, SIMATIC I…

CVSS
6.2
Medium
EPSS
0.00
p0
Published
2024-01-01
Updated
2024-01-01
Description

Уязвимость менеджера хранения данных Adaptec Maxview промышленных компьютеров SIMATIC IPC1047, SIMATIC IPC1047E, SIMATIC IPC647D, SIMATIC IPC647E связана с использованием неуникального сертификата TLS. Эксплуатация уязвимости может позволить нарушителю проводить атаки типа "человек посередине"

Affected products
Microchip technology Maxview storage managerSiemens ag Simatic ipc1047Siemens ag Simatic ipc1047eSiemens ag Simatic ipc647dSiemens ag Simatic ipc647eSiemens ag Simatic ipc847dSiemens ag Simatic ipc847e
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Timeline
2024-01-01
Published
2024-01-01
Updated
CVSS 3.1 breakdown
Attack Vector
AV: L
Local (L)
Attack Complexity
AC: L
Low (L)
Privileges Required
PR: N
None (N)
User Interaction
UI: N
None (N)
Scope
S: U
Unchanged (U)
Confidentiality Impact
C: H
High (H)
Integrity Impact
I: N
None (N)
Availability Impact
A: N
None (N)
Exploit indicators
EPSS
0.000 · p0
Known exploited (KEV)
No
Known exploits — Сканер-ВС
No Сканер-ВС checks registered for this vulnerability yet.
Affected products
Siemens
Simatic Ipc847eSimatic Ipc647eSimatic Ipc647dSimatic Ipc847dSimatic Ipc1047eSimatic Ipc1047
Microchip Technology
Maxview Storage Manager
ProductVendorStatus
maxview storage managermicrochip technologyTracked
simatic ipc1047siemens agTracked
simatic ipc1047esiemens agTracked
simatic ipc647dsiemens agTracked
simatic ipc647esiemens agTracked
simatic ipc847dsiemens agTracked
simatic ipc847esiemens agTracked
Source databases
BDU
Related vulnerabilities
CVE-2023-23588