var-201803-1807
Vulnerability from variot
A Cleartext Transmission of Sensitive Information issue was discovered in Belden Hirschmann RS, RSR, RSB, MACH100, MACH1000, MACH4000, MS, and OCTOPUS Classic Platform Switches. A cleartext transmission of sensitive information vulnerability in the web interface has been identified, which may allow an attacker to obtain sensitive information through a successful man-in-the-middle attack. plural Belden Hirschmann The product contains an information disclosure vulnerability.Information may be obtained. BeldenHirschmannRS and other are the switch products of the Belden company in the United States. Multiple Belden Products are prone to the following security vulnerabilities. 1. Session Hijacking Vulnerability 2. An information-disclosure vulnerability 3. A security-bypass vulnerability 4. A security weakness vulnerability 5. Successfully exploiting this issue may lead to further attacks
Show details on source website{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-201803-1807",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": "hirschmann octopus os20-000900t5t5tnebhh",
"scope": "eq",
"trust": 1.6,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann octopus 8m-8poe",
"scope": "eq",
"trust": 1.6,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann octopus 24m-train-bp",
"scope": "eq",
"trust": 1.6,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann octopus 8tx poe-eec",
"scope": "eq",
"trust": 1.6,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann octopus 8m",
"scope": "eq",
"trust": 1.6,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann octopus 8tx-eec",
"scope": "eq",
"trust": 1.6,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann octopus os20-000900t5t5tafbhh",
"scope": "eq",
"trust": 1.6,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann octopus 8m-6poe",
"scope": "eq",
"trust": 1.6,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann octopus 8m-train-bp",
"scope": "eq",
"trust": 1.6,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann octopus 8m-train",
"scope": "eq",
"trust": 1.6,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann rs",
"scope": null,
"trust": 1.4,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann rsr",
"scope": null,
"trust": 1.4,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann rsb",
"scope": null,
"trust": 1.4,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann mach100",
"scope": null,
"trust": 1.4,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann mach1000",
"scope": null,
"trust": 1.4,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann mach4000",
"scope": null,
"trust": 1.4,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann ms",
"scope": null,
"trust": 1.4,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann octopus",
"scope": null,
"trust": 1.4,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann mach4002-24g-l2p",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann octopus os24-080900t5t5tnebhh",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann mach104-16tx-poep-l3p",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann octopus os30-0008024b4btrephh",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann mach104-20tx-f-l3p",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann rs20-1600m2m2sdau",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann octopus os20-0010001s1strephh",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann octopus os20-001000t5t5tafuhb",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann rsb20-0800t1t1taabe",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann rsb20-0900s2ttsaabe",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann octopus 16m-train",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann rs20-1600l2t1sdau",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann m1-8tp-rj45",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann rsb20-0900mmm2saab",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann octopus os32-080802t6t6tpephh",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann mach104-20tx-f",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann octopus 24m",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann mach4002-48g-l3e",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann octopus os20-0010001m1mtrephh",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann rsb20-0900mmm2taab",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann rsb20-0800m2m2taabe",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann octopus 16m-train-bp",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann octopus os30-0008021a1atrephh",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann mach102-8tp-f",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann rsb20-0800t1t1saab",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann octopus os30-0008024a4atrephh",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann mach102-24tp-f",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann rsb20-0900zzz6taab",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann mach104-16tx-poep -r",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann rsb20-0900vvm2taabe",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann mach104-16tx-poep \\+2x -r-l3p",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann mach102-8tp-fr",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann ms20-0800eccp",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann rsb20-0900mmm2saabe",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann rsb20-0900s2tttaab",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann octopus os32-081602o6o6tpephh",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann rsb20-0800s2s2saab",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann mach104-16tx-poep \\+2x -r",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann octopus 24m-8 poe",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann octopus os30",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann rsb20-0800t1t1taab",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann octopus 5tx eec",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann rs20-0900nnm4tdau",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann mach4002-24g\\+3x-l3p",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann rsr20",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann mach104-20tx-fr",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann ms20-0800saae",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann rsb20-0800t1t1saabe",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann rsb20-0900vvm2saabe",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann mach4002-24g\\+3x-l2p",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann rsb20-0900s2tttaabe",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann rs20-1600l2m2sdau",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann octopus os24-081000t5t5tffuhb",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann octopus os24-081000t5t5tneuhb",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann rsb20-0900zzz6taabe",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann mach104-16tx-poep -e",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann octopus os30-0008021b1btrephh",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann rsr30",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann mach4002-48g\\+3x-l3e",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann rsb20-0800m2m2saab",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann octopus os32-081602t6t6tpephh",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann mach4002-48g\\+3x-l3p",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann rsb20-0900vvm2taab",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann rsb20-0900s2ttsaab",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann mach104-16tx-poep \\+2x -e-l3p",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann octopus 16m-8poe",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann octopus os3x-xx24xxx",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann mach102-8tp-r",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann mach104-16tx-poep -e-l3p",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann rs20-1600l2l2sdau",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann mach4002-48g-l3p",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann rsb20-0900m2ttsaabe",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann rsb20-0800m2m2taab",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann m1-8sfp",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann mach102-8tp",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann mach4002-24g-l3e",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann mach4002-24g-l3p",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann mach104-16tx-poep -r-l3p",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann ms20-1600eccp",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann octopus os20-0010004m4mtrephh",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann rsb20-0800s2s2taabe",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann mach104-16tx-poep",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann mach104-20tx-f-4poe",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann rs20-1600s2s2sdau",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann rsb20-0900zzz6saabe",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann rsb20-0900vvm2saab",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann octopus 24m-train",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann rsb20-0900m2tttaabe",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann mach104-20tx-fr-l3p",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann m1-8mm-sc",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann rs20-0900vvm2tdau",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann mach4002-48g-l2p",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann ms20-1600saae",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann m1-8sm-sc",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann rs20-1600l2s2sdau",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann ms30-0802saae",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann octopus os20-0010004s4strephh",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann ms20-1600saap",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann octopus os3x-xx16xxx",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann rs20-1600m2t1sdau",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann mach4002-48g\\+3x-l2p",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann octopus os20-001000t5t5tneuhb",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann rsb20-0800s2s2taab",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann rsb20-0900m2tttaab",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann mach104-16tx-poep \\+2x-l3p",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann ms30-0802saap",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann rsb20-0800m2m2saabe",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann rsb20-0900m2ttsaab",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann mach104-16tx-poep \\+2x -e",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann mach4002-24g\\+3x-l3e",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann rsb20-0900mmm2taabe",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann octopus 16m",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann ms30-1602saae",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann rs20-1600s2t1sdau",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann rsb20-0900zzz6saab",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann mach102-24tp-fr",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann octopus os24-080900t5t5tffbhh",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann mach104-16tx-poep \\+2x",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann octopus os34",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann rsb20-0800s2s2saabe",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann octopus os32-080802o6o6tpephh",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann ms20-0800saap",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann rs20-1600s2m2sdau",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "hirschmann rs20-0900mmm2tdau",
"scope": "eq",
"trust": 1.0,
"vendor": "belden",
"version": null
},
{
"model": "rsr",
"scope": "eq",
"trust": 0.3,
"vendor": "belden",
"version": "0"
},
{
"model": "rsb",
"scope": "eq",
"trust": 0.3,
"vendor": "belden",
"version": "0"
},
{
"model": "rs",
"scope": "eq",
"trust": 0.3,
"vendor": "belden",
"version": "0"
},
{
"model": "octopus",
"scope": "eq",
"trust": 0.3,
"vendor": "belden",
"version": "0"
},
{
"model": "ms",
"scope": "eq",
"trust": 0.3,
"vendor": "belden",
"version": "0"
},
{
"model": "mach4000",
"scope": "eq",
"trust": 0.3,
"vendor": "belden",
"version": "0"
},
{
"model": "mach1000",
"scope": "eq",
"trust": 0.3,
"vendor": "belden",
"version": "0"
},
{
"model": "mach100",
"scope": "eq",
"trust": 0.3,
"vendor": "belden",
"version": "0"
},
{
"model": "hirschmann rs",
"scope": "eq",
"trust": 0.2,
"vendor": "belden",
"version": "*"
},
{
"model": "hirschmann rsr",
"scope": "eq",
"trust": 0.2,
"vendor": "belden",
"version": "*"
},
{
"model": "hirschmann rsb",
"scope": "eq",
"trust": 0.2,
"vendor": "belden",
"version": "*"
},
{
"model": "hirschmann mach100",
"scope": "eq",
"trust": 0.2,
"vendor": "belden",
"version": "*"
},
{
"model": "hirschmann mach1000",
"scope": "eq",
"trust": 0.2,
"vendor": "belden",
"version": "*"
},
{
"model": "hirschmann mach4000",
"scope": "eq",
"trust": 0.2,
"vendor": "belden",
"version": "*"
},
{
"model": "hirschmann ms",
"scope": "eq",
"trust": 0.2,
"vendor": "belden",
"version": "*"
},
{
"model": "hirschmann octopus",
"scope": "eq",
"trust": 0.2,
"vendor": "belden",
"version": "*"
}
],
"sources": [
{
"db": "IVD",
"id": "e2e4ff40-39ab-11e9-b6ab-000c29342cb1"
},
{
"db": "CNVD",
"id": "CNVD-2018-04782"
},
{
"db": "BID",
"id": "103340"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-002741"
},
{
"db": "CNNVD",
"id": "CNNVD-201803-136"
},
{
"db": "NVD",
"id": "CVE-2018-5471"
}
]
},
"configurations": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/configurations#",
"children": {
"@container": "@list"
},
"cpe_match": {
"@container": "@list"
},
"data": {
"@container": "@list"
},
"nodes": {
"@container": "@list"
}
},
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"cpe_match": [
{
"cpe22Uri": "cpe:/h:belden:hirschmann_mach100",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/h:belden:hirschmann_mach1000",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/h:belden:hirschmann_mach4000",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/h:belden:hirschmann_ms",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/h:belden:hirschmann_octopus",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/h:belden:hirschmann_rs",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/h:belden:hirschmann_rsb",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/h:belden:hirschmann_rsr",
"vulnerable": true
}
],
"operator": "OR"
}
]
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2018-002741"
}
]
},
"credits": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/credits#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Ilya Karpov, Evgeniy Druzhinin, Mikhail Tsvetkov, and Damir Zainullin of Positive Technologies.",
"sources": [
{
"db": "BID",
"id": "103340"
}
],
"trust": 0.3
},
"cve": "CVE-2018-5471",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "nvd@nist.gov",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 8.6,
"id": "CVE-2018-5471",
"impactScore": 2.9,
"integrityImpact": "NONE",
"severity": "MEDIUM",
"trust": 1.8,
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
{
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "CNVD",
"availabilityImpact": "NONE",
"baseScore": 5.4,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 4.9,
"id": "CNVD-2018-04782",
"impactScore": 6.9,
"integrityImpact": "NONE",
"severity": "MEDIUM",
"trust": 0.6,
"vectorString": "AV:N/AC:H/Au:N/C:C/I:N/A:N",
"version": "2.0"
},
{
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "IVD",
"availabilityImpact": "NONE",
"baseScore": 5.4,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 4.9,
"id": "e2e4ff40-39ab-11e9-b6ab-000c29342cb1",
"impactScore": 6.9,
"integrityImpact": "NONE",
"severity": "MEDIUM",
"trust": 0.2,
"vectorString": "AV:N/AC:H/Au:N/C:C/I:N/A:N",
"version": "2.9 [IVD]"
}
],
"cvssV3": [
{
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"author": "nvd@nist.gov",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"exploitabilityScore": 2.2,
"id": "CVE-2018-5471",
"impactScore": 3.6,
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"trust": 1.8,
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
}
],
"severity": [
{
"author": "nvd@nist.gov",
"id": "CVE-2018-5471",
"trust": 1.0,
"value": "MEDIUM"
},
{
"author": "NVD",
"id": "CVE-2018-5471",
"trust": 0.8,
"value": "Medium"
},
{
"author": "CNVD",
"id": "CNVD-2018-04782",
"trust": 0.6,
"value": "MEDIUM"
},
{
"author": "CNNVD",
"id": "CNNVD-201803-136",
"trust": 0.6,
"value": "MEDIUM"
},
{
"author": "IVD",
"id": "e2e4ff40-39ab-11e9-b6ab-000c29342cb1",
"trust": 0.2,
"value": "MEDIUM"
}
]
}
],
"sources": [
{
"db": "IVD",
"id": "e2e4ff40-39ab-11e9-b6ab-000c29342cb1"
},
{
"db": "CNVD",
"id": "CNVD-2018-04782"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-002741"
},
{
"db": "CNNVD",
"id": "CNNVD-201803-136"
},
{
"db": "NVD",
"id": "CVE-2018-5471"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "A Cleartext Transmission of Sensitive Information issue was discovered in Belden Hirschmann RS, RSR, RSB, MACH100, MACH1000, MACH4000, MS, and OCTOPUS Classic Platform Switches. A cleartext transmission of sensitive information vulnerability in the web interface has been identified, which may allow an attacker to obtain sensitive information through a successful man-in-the-middle attack. plural Belden Hirschmann The product contains an information disclosure vulnerability.Information may be obtained. BeldenHirschmannRS and other are the switch products of the Belden company in the United States. Multiple Belden Products are prone to the following security vulnerabilities. \n1. Session Hijacking Vulnerability\n2. An information-disclosure vulnerability\n3. A security-bypass vulnerability\n4. A security weakness vulnerability\n5. Successfully exploiting this issue may lead to further attacks",
"sources": [
{
"db": "NVD",
"id": "CVE-2018-5471"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-002741"
},
{
"db": "CNVD",
"id": "CNVD-2018-04782"
},
{
"db": "BID",
"id": "103340"
},
{
"db": "IVD",
"id": "e2e4ff40-39ab-11e9-b6ab-000c29342cb1"
}
],
"trust": 2.61
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "NVD",
"id": "CVE-2018-5471",
"trust": 3.5
},
{
"db": "ICS CERT",
"id": "ICSA-18-065-01",
"trust": 3.3
},
{
"db": "BID",
"id": "103340",
"trust": 1.9
},
{
"db": "CNVD",
"id": "CNVD-2018-04782",
"trust": 0.8
},
{
"db": "CNNVD",
"id": "CNNVD-201803-136",
"trust": 0.8
},
{
"db": "JVNDB",
"id": "JVNDB-2018-002741",
"trust": 0.8
},
{
"db": "IVD",
"id": "E2E4FF40-39AB-11E9-B6AB-000C29342CB1",
"trust": 0.2
}
],
"sources": [
{
"db": "IVD",
"id": "e2e4ff40-39ab-11e9-b6ab-000c29342cb1"
},
{
"db": "CNVD",
"id": "CNVD-2018-04782"
},
{
"db": "BID",
"id": "103340"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-002741"
},
{
"db": "CNNVD",
"id": "CNNVD-201803-136"
},
{
"db": "NVD",
"id": "CVE-2018-5471"
}
]
},
"id": "VAR-201803-1807",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "IVD",
"id": "e2e4ff40-39ab-11e9-b6ab-000c29342cb1"
},
{
"db": "CNVD",
"id": "CNVD-2018-04782"
}
],
"trust": 1.55476865375
},
"iot_taxonomy": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"category": [
"ICS",
"Network device"
],
"sub_category": null,
"trust": 0.6
},
{
"category": [
"ICS"
],
"sub_category": null,
"trust": 0.2
}
],
"sources": [
{
"db": "IVD",
"id": "e2e4ff40-39ab-11e9-b6ab-000c29342cb1"
},
{
"db": "CNVD",
"id": "CNVD-2018-04782"
}
]
},
"last_update_date": "2024-11-23T22:26:25.979000Z",
"patch": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/patch#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"title": "Top Page",
"trust": 0.8,
"url": "http://www.hirschmann.com/"
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2018-002741"
}
]
},
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "CWE-319",
"trust": 1.0
},
{
"problemtype": "CWE-200",
"trust": 0.8
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2018-002741"
},
{
"db": "NVD",
"id": "CVE-2018-5471"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 3.3,
"url": "https://ics-cert.us-cert.gov/advisories/icsa-18-065-01"
},
{
"trust": 1.6,
"url": "http://www.securityfocus.com/bid/103340"
},
{
"trust": 0.8,
"url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2018-5471"
},
{
"trust": 0.8,
"url": "https://nvd.nist.gov/vuln/detail/cve-2018-5471"
},
{
"trust": 0.3,
"url": "https://www.belden.com/"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2018-04782"
},
{
"db": "BID",
"id": "103340"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-002741"
},
{
"db": "CNNVD",
"id": "CNNVD-201803-136"
},
{
"db": "NVD",
"id": "CVE-2018-5471"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "IVD",
"id": "e2e4ff40-39ab-11e9-b6ab-000c29342cb1"
},
{
"db": "CNVD",
"id": "CNVD-2018-04782"
},
{
"db": "BID",
"id": "103340"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-002741"
},
{
"db": "CNNVD",
"id": "CNNVD-201803-136"
},
{
"db": "NVD",
"id": "CVE-2018-5471"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2018-03-09T00:00:00",
"db": "IVD",
"id": "e2e4ff40-39ab-11e9-b6ab-000c29342cb1"
},
{
"date": "2018-03-09T00:00:00",
"db": "CNVD",
"id": "CNVD-2018-04782"
},
{
"date": "2018-03-06T00:00:00",
"db": "BID",
"id": "103340"
},
{
"date": "2018-04-26T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2018-002741"
},
{
"date": "2018-03-07T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201803-136"
},
{
"date": "2018-03-06T21:29:00.440000",
"db": "NVD",
"id": "CVE-2018-5471"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2018-03-09T00:00:00",
"db": "CNVD",
"id": "CNVD-2018-04782"
},
{
"date": "2018-03-06T00:00:00",
"db": "BID",
"id": "103340"
},
{
"date": "2018-04-26T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2018-002741"
},
{
"date": "2019-10-17T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201803-136"
},
{
"date": "2024-11-21T04:08:52.027000",
"db": "NVD",
"id": "CVE-2018-5471"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "remote",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201803-136"
}
],
"trust": 0.6
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "plural Belden Hirschmann Information disclosure vulnerability in products",
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2018-002741"
}
],
"trust": 0.8
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "information disclosure",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201803-136"
}
],
"trust": 0.6
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.