Vulnerability Description
Siemens SICAM PAS through 8.07 allows local users to obtain sensitive configuration information by leveraging database stoppage.
CVSS Score
2.5
LOW
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Siemens | Sicam Pas\/Pqs | <= 8.07 |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/91525Third Party AdvisoryVDB Entry
- http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-444217.pdfVendor Advisory
- https://ics-cert.us-cert.gov/advisories/ICSA-16-182-02Third Party AdvisoryUS Government Resource
- http://www.securityfocus.com/bid/91525Third Party AdvisoryVDB Entry
- http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-444217.pdfVendor Advisory
- https://ics-cert.us-cert.gov/advisories/ICSA-16-182-02Third Party AdvisoryUS Government Resource
FAQ
What is CVE-2016-5849?
CVE-2016-5849 is a vulnerability with a CVSS score of 2.5 (LOW). Siemens SICAM PAS through 8.07 allows local users to obtain sensitive configuration information by leveraging database stoppage.
How severe is CVE-2016-5849?
CVE-2016-5849 has been rated LOW with a CVSS base score of 2.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2016-5849?
Check the references section above for vendor advisories and patch information. Affected products include: Siemens Sicam Pas\/Pqs.