Vulnerability Description
Siemens SICAM MIC devices with firmware before 2404 allow remote attackers to bypass authentication and obtain administrative access via unspecified HTTP requests.
CVSS Score
9.3
HIGH
AV:N/AC:M/Au:N/C:C/I:C/A:C
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Siemens | Sicam Mic Firmware | <= 2403 |
| Siemens | Sicam Mic | All versions |
Related Weaknesses (CWE)
References
- http://www.siemens.com/innovation/pool/de/forschungsfelder/siemens_security_adviPatchVendor Advisory
- https://ics-cert.us-cert.gov/advisories/ICSA-15-195-01Third Party AdvisoryUS Government Resource
- http://www.siemens.com/innovation/pool/de/forschungsfelder/siemens_security_adviPatchVendor Advisory
- https://ics-cert.us-cert.gov/advisories/ICSA-15-195-01Third Party AdvisoryUS Government Resource
FAQ
What is CVE-2015-5386?
CVE-2015-5386 is a vulnerability with a CVSS score of 9.3 (HIGH). Siemens SICAM MIC devices with firmware before 2404 allow remote attackers to bypass authentication and obtain administrative access via unspecified HTTP requests.
How severe is CVE-2015-5386?
CVE-2015-5386 has been rated HIGH with a CVSS base score of 9.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2015-5386?
Check the references section above for vendor advisories and patch information. Affected products include: Siemens Sicam Mic Firmware, Siemens Sicam Mic.