1. Home
  2. CVE Database
  3. CVE-2013-4652
HIGH · 10.0

CVE-2013-4652

Unspecified vulnerability in the command-line management interface on Siemens Scalance W7xx devices with firmware before 4.5.4 allows remote attackers to bypass authentication and execute arbitrary co...

Vulnerability Description

Unspecified vulnerability in the command-line management interface on Siemens Scalance W7xx devices with firmware before 4.5.4 allows remote attackers to bypass authentication and execute arbitrary code via a (1) SSH or (2) TELNET connection.

CVSS Score

10.0

HIGH

AV:N/AC:L/Au:N/C:C/I:C/A:C
Confidentiality
COMPLETE
Integrity
COMPLETE
Availability
COMPLETE

Affected Products

VendorProductVersions
SiemensScalance W700 Series Firmware<= 4.4.0
SiemensScalance W744-1-
SiemensScalance W744-1Pro-
SiemensScalance W746-1-
SiemensScalance W746-1Pro-
SiemensScalance W747-1-
SiemensScalance W747-1Rr-
SiemensScalance W784-1-
SiemensScalance W784-1Rr-
SiemensScalance W786-1Pro-
SiemensScalance W786-2Pro-
SiemensScalance W786-2Rr-
SiemensScalance W786-3Pro-
SiemensScalance W788-1Pro-
SiemensScalance W788-1Rr-
SiemensScalance W788-2Pro-
SiemensScalance W788-2Rr-

References

FAQ

What is CVE-2013-4652?

CVE-2013-4652 is a vulnerability with a CVSS score of 10.0 (HIGH). Unspecified vulnerability in the command-line management interface on Siemens Scalance W7xx devices with firmware before 4.5.4 allows remote attackers to bypass authentication and execute arbitrary co...

How severe is CVE-2013-4652?

CVE-2013-4652 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2013-4652?

Check the references section above for vendor advisories and patch information. Affected products include: Siemens Scalance W700 Series Firmware, Siemens Scalance W744-1, Siemens Scalance W744-1Pro, Siemens Scalance W746-1, Siemens Scalance W746-1Pro.