var-201609-0493
Vulnerability from variot
A vulnerability has been identified in Firmware variant PROFINET IO for EN100 Ethernet module : All versions < V1.04.01; Firmware variant Modbus TCP for EN100 Ethernet module : All versions < V1.11.00; Firmware variant DNP3 TCP for EN100 Ethernet module : All versions < V1.03; Firmware variant IEC 104 for EN100 Ethernet module : All versions < V1.21; EN100 Ethernet module included in SIPROTEC Merging Unit 6MU80 : All versions < 1.02.02; SIPROTEC 7SJ686 : All versions < V 4.87; SIPROTEC 7UT686 : All versions < V 4.02; SIPROTEC 7SD686 : All versions < V 4.05; SIPROTEC 7SJ66 : All versions < V 4.30. Attackers with network access to the device's web interface (port 80/tcp) could possibly circumvent authentication and perform certain administrative operations. A legitimate user must be logged into the web interface for the attack to be successful. Siemens SIPROTEC 4 and SIPROTEC Compact For devices EN100 Ethernet The module contains a vulnerability that prevents authentication and gains administrative access.By a third party, unspecified during the authentication session HTTP Via traffic, authentication may be bypassed and administrative access may be gained. SIPROTEC 4 and SIPROTEC Compact devices offer a wide range of centralized protection, control and automation functions for substations and other applications. This may aid in further attacks. EN100 Ethernet Modules for Reyrolle is prone to the following security vulnerabilities: : 1. Multiple information-disclosure vulnerabilities 2. A denial-of-service vulnerability 3. Multiple authentication-bypass vulnerabilities An attacker may leverage these issues to disclose sensitive information, perform certain unauthorized actions actions, gain unauthorized access, or bypass certain security restrictions and cause a denial-of-service condition. EN100 Ethernet Module prior to 4.29.01 are vulnerable. Both Siemens SIPROTEC 4 and SIPROTEC Compact are products of Siemens, Germany. Siemens SIPROTEC 4 is a series of multifunctional relays with a friendly man-machine interface. SIPROTEC Compact is a microcomputer protection device
Show details on source website{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-201609-0493",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": "en100 ethernet module",
"scope": "eq",
"trust": 1.6,
"vendor": "siemens",
"version": "4.28"
},
{
"model": "en100 module",
"scope": null,
"trust": 0.8,
"vendor": "siemens",
"version": null
},
{
"model": "en100 module",
"scope": "lt",
"trust": 0.8,
"vendor": "siemens",
"version": "4.29"
},
{
"model": "siprotec compact \u003cen100 ethernet",
"scope": "eq",
"trust": 0.6,
"vendor": "siemens",
"version": "4.29"
},
{
"model": "siprotec \u003cen100 ethernet",
"scope": "eq",
"trust": 0.6,
"vendor": "siemens",
"version": "44.29"
},
{
"model": "reyrolle",
"scope": "eq",
"trust": 0.6,
"vendor": "siemens",
"version": "0"
},
{
"model": "siprotec compact",
"scope": "eq",
"trust": 0.3,
"vendor": "siemens",
"version": "0"
},
{
"model": "siprotec 7ut686",
"scope": "eq",
"trust": 0.3,
"vendor": "siemens",
"version": "0"
},
{
"model": "siprotec 7sj686",
"scope": "eq",
"trust": 0.3,
"vendor": "siemens",
"version": "0"
},
{
"model": "siprotec 7sj66",
"scope": "eq",
"trust": 0.3,
"vendor": "siemens",
"version": "0"
},
{
"model": "siprotec 7sd686",
"scope": "eq",
"trust": 0.3,
"vendor": "siemens",
"version": "0"
},
{
"model": "siprotec",
"scope": "eq",
"trust": 0.3,
"vendor": "siemens",
"version": "40"
},
{
"model": "profinet io",
"scope": "eq",
"trust": 0.3,
"vendor": "siemens",
"version": "0"
},
{
"model": "modbus tcp",
"scope": "eq",
"trust": 0.3,
"vendor": "siemens",
"version": "0"
},
{
"model": "iec",
"scope": "eq",
"trust": 0.3,
"vendor": "siemens",
"version": "1040"
},
{
"model": "en100 ethernet module",
"scope": "eq",
"trust": 0.3,
"vendor": "siemens",
"version": "0"
},
{
"model": "en100",
"scope": "eq",
"trust": 0.3,
"vendor": "siemens",
"version": "4.20"
},
{
"model": "dnp3 tcp",
"scope": "eq",
"trust": 0.3,
"vendor": "siemens",
"version": "0"
},
{
"model": "profinet io",
"scope": "ne",
"trust": 0.3,
"vendor": "siemens",
"version": "1.4.1"
},
{
"model": "en100",
"scope": "ne",
"trust": 0.3,
"vendor": "siemens",
"version": "4.29.1"
},
{
"model": "en100",
"scope": "ne",
"trust": 0.3,
"vendor": "siemens",
"version": "4.29"
},
{
"model": "en100 ethernet module",
"scope": "eq",
"trust": 0.3,
"vendor": "siemens",
"version": "4.29"
},
{
"model": "en100 ethernet module",
"scope": "eq",
"trust": 0.3,
"vendor": "siemens",
"version": "4.20"
},
{
"model": "en100 ethernet module",
"scope": "ne",
"trust": 0.3,
"vendor": "siemens",
"version": "4.29.1"
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "en100 ethernet module",
"version": "4.28"
}
],
"sources": [
{
"db": "IVD",
"id": "6587e038-6394-4a4e-a365-44f992122a59"
},
{
"db": "CNVD",
"id": "CNVD-2016-07251"
},
{
"db": "BID",
"id": "92745"
},
{
"db": "BID",
"id": "99471"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-004539"
},
{
"db": "CNNVD",
"id": "CNNVD-201609-042"
},
{
"db": "NVD",
"id": "CVE-2016-7114"
}
]
},
"configurations": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/configurations#",
"children": {
"@container": "@list"
},
"cpe_match": {
"@container": "@list"
},
"data": {
"@container": "@list"
},
"nodes": {
"@container": "@list"
}
},
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"cpe_match": [
{
"cpe22Uri": "cpe:/h:siemens:en100_ethernet_module",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/a:siemens:en100_ethernet_module_firmware",
"vulnerable": true
}
],
"operator": "OR"
}
]
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2016-004539"
}
]
},
"credits": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/credits#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "The vendor reported this issue.",
"sources": [
{
"db": "BID",
"id": "92745"
}
],
"trust": 0.3
},
"cve": "CVE-2016-7114",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "SINGLE",
"author": "nvd@nist.gov",
"availabilityImpact": "COMPLETE",
"baseScore": 9.0,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 8.0,
"id": "CVE-2016-7114",
"impactScore": 10.0,
"integrityImpact": "COMPLETE",
"severity": "HIGH",
"trust": 1.8,
"vectorString": "AV:N/AC:L/Au:S/C:C/I:C/A:C",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "CNVD",
"availabilityImpact": "NONE",
"baseScore": 5.0,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 10.0,
"id": "CNVD-2016-07251",
"impactScore": 2.9,
"integrityImpact": "NONE",
"severity": "MEDIUM",
"trust": 0.6,
"vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "IVD",
"availabilityImpact": "NONE",
"baseScore": 5.0,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 10.0,
"id": "6587e038-6394-4a4e-a365-44f992122a59",
"impactScore": 2.9,
"integrityImpact": "NONE",
"severity": "MEDIUM",
"trust": 0.2,
"vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
"version": "2.9 [IVD]"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "SINGLE",
"author": "VULHUB",
"availabilityImpact": "COMPLETE",
"baseScore": 9.0,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 8.0,
"id": "VHN-95934",
"impactScore": 10.0,
"integrityImpact": "COMPLETE",
"severity": "HIGH",
"trust": 0.1,
"vectorString": "AV:N/AC:L/AU:S/C:C/I:C/A:C",
"version": "2.0"
}
],
"cvssV3": [
{
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"author": "nvd@nist.gov",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"exploitabilityScore": 2.8,
"id": "CVE-2016-7114",
"impactScore": 5.9,
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"trust": 1.8,
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
}
],
"severity": [
{
"author": "nvd@nist.gov",
"id": "CVE-2016-7114",
"trust": 1.0,
"value": "HIGH"
},
{
"author": "NVD",
"id": "CVE-2016-7114",
"trust": 0.8,
"value": "High"
},
{
"author": "CNVD",
"id": "CNVD-2016-07251",
"trust": 0.6,
"value": "MEDIUM"
},
{
"author": "CNNVD",
"id": "CNNVD-201609-042",
"trust": 0.6,
"value": "CRITICAL"
},
{
"author": "IVD",
"id": "6587e038-6394-4a4e-a365-44f992122a59",
"trust": 0.2,
"value": "CRITICAL"
},
{
"author": "VULHUB",
"id": "VHN-95934",
"trust": 0.1,
"value": "HIGH"
}
]
}
],
"sources": [
{
"db": "IVD",
"id": "6587e038-6394-4a4e-a365-44f992122a59"
},
{
"db": "CNVD",
"id": "CNVD-2016-07251"
},
{
"db": "VULHUB",
"id": "VHN-95934"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-004539"
},
{
"db": "CNNVD",
"id": "CNNVD-201609-042"
},
{
"db": "NVD",
"id": "CVE-2016-7114"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "A vulnerability has been identified in Firmware variant PROFINET IO for EN100 Ethernet module : All versions \u003c V1.04.01; Firmware variant Modbus TCP for EN100 Ethernet module : All versions \u003c V1.11.00; Firmware variant DNP3 TCP for EN100 Ethernet module : All versions \u003c V1.03; Firmware variant IEC 104 for EN100 Ethernet module : All versions \u003c V1.21; EN100 Ethernet module included in SIPROTEC Merging Unit 6MU80 : All versions \u003c 1.02.02; SIPROTEC 7SJ686 : All versions \u003c V 4.87; SIPROTEC 7UT686 : All versions \u003c V 4.02; SIPROTEC 7SD686 : All versions \u003c V 4.05; SIPROTEC 7SJ66 : All versions \u003c V 4.30. Attackers with network access to the device\u0027s web interface (port 80/tcp) could possibly circumvent authentication and perform certain administrative operations. A legitimate user must be logged into the web interface for the attack to be successful. Siemens SIPROTEC 4 and SIPROTEC Compact For devices EN100 Ethernet The module contains a vulnerability that prevents authentication and gains administrative access.By a third party, unspecified during the authentication session HTTP Via traffic, authentication may be bypassed and administrative access may be gained. SIPROTEC 4 and SIPROTEC Compact devices offer a wide range of centralized protection, control and automation functions for substations and other applications. This may aid in further attacks. EN100 Ethernet Modules for Reyrolle is prone to the following security vulnerabilities: :\n1. Multiple information-disclosure vulnerabilities\n2. A denial-of-service vulnerability\n3. Multiple authentication-bypass vulnerabilities\nAn attacker may leverage these issues to disclose sensitive information, perform certain unauthorized actions actions, gain unauthorized access, or bypass certain security restrictions and cause a denial-of-service condition. \nEN100 Ethernet Module prior to 4.29.01 are vulnerable. Both Siemens SIPROTEC 4 and SIPROTEC Compact are products of Siemens, Germany. Siemens SIPROTEC 4 is a series of multifunctional relays with a friendly man-machine interface. SIPROTEC Compact is a microcomputer protection device",
"sources": [
{
"db": "NVD",
"id": "CVE-2016-7114"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-004539"
},
{
"db": "CNVD",
"id": "CNVD-2016-07251"
},
{
"db": "BID",
"id": "92745"
},
{
"db": "BID",
"id": "99471"
},
{
"db": "IVD",
"id": "6587e038-6394-4a4e-a365-44f992122a59"
},
{
"db": "VULHUB",
"id": "VHN-95934"
}
],
"trust": 2.97
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "NVD",
"id": "CVE-2016-7114",
"trust": 3.9
},
{
"db": "SIEMENS",
"id": "SSA-630413",
"trust": 2.6
},
{
"db": "ICS CERT",
"id": "ICSA-17-187-03",
"trust": 2.2
},
{
"db": "BID",
"id": "92745",
"trust": 2.0
},
{
"db": "BID",
"id": "99471",
"trust": 1.4
},
{
"db": "SIEMENS",
"id": "SSA-323211",
"trust": 1.1
},
{
"db": "ICS CERT",
"id": "ICSA-16-250-01",
"trust": 1.1
},
{
"db": "CNNVD",
"id": "CNNVD-201609-042",
"trust": 0.9
},
{
"db": "CNVD",
"id": "CNVD-2016-07251",
"trust": 0.8
},
{
"db": "ICS CERT",
"id": "ICSA-17-334-01",
"trust": 0.8
},
{
"db": "JVNDB",
"id": "JVNDB-2016-004539",
"trust": 0.8
},
{
"db": "ICS CERT",
"id": "ICSA-17-187-02",
"trust": 0.6
},
{
"db": "NSFOCUS",
"id": "34718",
"trust": 0.6
},
{
"db": "IVD",
"id": "6587E038-6394-4A4E-A365-44F992122A59",
"trust": 0.2
},
{
"db": "VULHUB",
"id": "VHN-95934",
"trust": 0.1
}
],
"sources": [
{
"db": "IVD",
"id": "6587e038-6394-4a4e-a365-44f992122a59"
},
{
"db": "CNVD",
"id": "CNVD-2016-07251"
},
{
"db": "VULHUB",
"id": "VHN-95934"
},
{
"db": "BID",
"id": "92745"
},
{
"db": "BID",
"id": "99471"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-004539"
},
{
"db": "CNNVD",
"id": "CNNVD-201609-042"
},
{
"db": "NVD",
"id": "CVE-2016-7114"
}
]
},
"id": "VAR-201609-0493",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "IVD",
"id": "6587e038-6394-4a4e-a365-44f992122a59"
},
{
"db": "CNVD",
"id": "CNVD-2016-07251"
},
{
"db": "VULHUB",
"id": "VHN-95934"
}
],
"trust": 1.646969684
},
"iot_taxonomy": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"category": [
"ICS"
],
"sub_category": null,
"trust": 0.8
}
],
"sources": [
{
"db": "IVD",
"id": "6587e038-6394-4a4e-a365-44f992122a59"
},
{
"db": "CNVD",
"id": "CNVD-2016-07251"
}
]
},
"last_update_date": "2024-11-23T22:13:28.614000Z",
"patch": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/patch#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"title": "SSA-630413",
"trust": 0.8,
"url": "http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-630413.pdf"
},
{
"title": "Siemens SIPROTEC 4/SIPROTEC Compact authentication bypass vulnerability patch",
"trust": 0.6,
"url": "https://www.cnvd.org.cn/patchInfo/show/81146"
},
{
"title": "Siemens SIPROTEC 4 and SIPROTEC Compact EN100 Ethernet Repair measures for module security vulnerabilities",
"trust": 0.6,
"url": "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=63879"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2016-07251"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-004539"
},
{
"db": "CNNVD",
"id": "CNNVD-201609-042"
}
]
},
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "CWE-287",
"trust": 1.1
},
{
"problemtype": "CWE-399",
"trust": 0.8
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-95934"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-004539"
},
{
"db": "NVD",
"id": "CVE-2016-7114"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 2.6,
"url": "http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-630413.pdf"
},
{
"trust": 2.2,
"url": "https://ics-cert.us-cert.gov/advisories/icsa-17-187-03"
},
{
"trust": 1.7,
"url": "http://www.securityfocus.com/bid/92745"
},
{
"trust": 1.1,
"url": "http://www.securityfocus.com/bid/99471"
},
{
"trust": 1.1,
"url": "https://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-323211.pdf"
},
{
"trust": 1.1,
"url": "https://ics-cert.us-cert.gov/advisories/icsa-16-250-01"
},
{
"trust": 0.8,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2016-7114"
},
{
"trust": 0.8,
"url": "https://ics-cert.us-cert.gov/advisories/icsa-17-334-01"
},
{
"trust": 0.8,
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2016-7114"
},
{
"trust": 0.6,
"url": "https://ics-cert.us-cert.gov/advisories/icsa-17-187-02"
},
{
"trust": 0.6,
"url": "http://www.nsfocus.net/vulndb/34718"
},
{
"trust": 0.3,
"url": "http://www.siemens.com/"
},
{
"trust": 0.3,
"url": "http://subscriber.communications.siemens.com/"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2016-07251"
},
{
"db": "VULHUB",
"id": "VHN-95934"
},
{
"db": "BID",
"id": "92745"
},
{
"db": "BID",
"id": "99471"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-004539"
},
{
"db": "CNNVD",
"id": "CNNVD-201609-042"
},
{
"db": "NVD",
"id": "CVE-2016-7114"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "IVD",
"id": "6587e038-6394-4a4e-a365-44f992122a59"
},
{
"db": "CNVD",
"id": "CNVD-2016-07251"
},
{
"db": "VULHUB",
"id": "VHN-95934"
},
{
"db": "BID",
"id": "92745"
},
{
"db": "BID",
"id": "99471"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-004539"
},
{
"db": "CNNVD",
"id": "CNNVD-201609-042"
},
{
"db": "NVD",
"id": "CVE-2016-7114"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2016-09-06T00:00:00",
"db": "IVD",
"id": "6587e038-6394-4a4e-a365-44f992122a59"
},
{
"date": "2016-09-06T00:00:00",
"db": "CNVD",
"id": "CNVD-2016-07251"
},
{
"date": "2016-09-06T00:00:00",
"db": "VULHUB",
"id": "VHN-95934"
},
{
"date": "2016-09-05T00:00:00",
"db": "BID",
"id": "92745"
},
{
"date": "2017-07-06T00:00:00",
"db": "BID",
"id": "99471"
},
{
"date": "2016-09-07T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2016-004539"
},
{
"date": "2016-09-06T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201609-042"
},
{
"date": "2016-09-06T00:59:02.977000",
"db": "NVD",
"id": "CVE-2016-7114"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2016-09-07T00:00:00",
"db": "CNVD",
"id": "CNVD-2016-07251"
},
{
"date": "2018-03-23T00:00:00",
"db": "VULHUB",
"id": "VHN-95934"
},
{
"date": "2017-07-11T12:06:00",
"db": "BID",
"id": "92745"
},
{
"date": "2017-07-06T00:00:00",
"db": "BID",
"id": "99471"
},
{
"date": "2017-12-20T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2016-004539"
},
{
"date": "2016-09-06T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201609-042"
},
{
"date": "2024-11-21T02:57:29.550000",
"db": "NVD",
"id": "CVE-2016-7114"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "network",
"sources": [
{
"db": "BID",
"id": "92745"
},
{
"db": "BID",
"id": "99471"
}
],
"trust": 0.6
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Siemens SIPROTEC 4/SIPROTEC Compact Authentication Bypass Vulnerability",
"sources": [
{
"db": "IVD",
"id": "6587e038-6394-4a4e-a365-44f992122a59"
},
{
"db": "CNVD",
"id": "CNVD-2016-07251"
}
],
"trust": 0.8
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "authorization issue",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201609-042"
}
],
"trust": 0.6
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.