1. Home
  2. CVE Database
  3. CVE-2019-10927
MEDIUM · 6.5

CVE-2019-10927

A vulnerability has been identified in SCALANCE SC-600 (V2.0), SCALANCE XB-200 (V4.1), SCALANCE XC-200 (V4.1), SCALANCE XF-200BA (V4.1), SCALANCE XP-200 (V4.1), SCALANCE XR-300WG (V4.1). An authentica...

Vulnerability Description

A vulnerability has been identified in SCALANCE SC-600 (V2.0), SCALANCE XB-200 (V4.1), SCALANCE XC-200 (V4.1), SCALANCE XF-200BA (V4.1), SCALANCE XP-200 (V4.1), SCALANCE XR-300WG (V4.1). An authenticated attacker with network access to to port 22/tcp of an affected device may cause a Denial-of-Service condition. The security vulnerability could be exploited by an authenticated attacker with network access to the affected device. No user interaction is required to exploit this vulnerability. The vulnerability impacts the availability of the affected device.

CVSS Score

6.5

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
NONE
Integrity
NONE
Availability
HIGH

Affected Products

VendorProductVersions
SiemensScalance Xb-200 Firmware4.1
SiemensScalance Xb-200-
SiemensScalance Xc-200 Firmware4.1
SiemensScalance Xc-200-
SiemensScalance Xf-200Ba Firmware4.1
SiemensScalance Xf-200Ba-
SiemensScalance Xp-200 Firmware4.1
SiemensScalance Xp-200-
SiemensScalance Xr-300Wg Firmware4.1
SiemensScalance Xr-300Wg-

Related Weaknesses (CWE)

CWE-703

References

FAQ

What is CVE-2019-10927?

CVE-2019-10927 is a vulnerability with a CVSS score of 6.5 (MEDIUM). A vulnerability has been identified in SCALANCE SC-600 (V2.0), SCALANCE XB-200 (V4.1), SCALANCE XC-200 (V4.1), SCALANCE XF-200BA (V4.1), SCALANCE XP-200 (V4.1), SCALANCE XR-300WG (V4.1). An authentica...

How severe is CVE-2019-10927?

CVE-2019-10927 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2019-10927?

Check the references section above for vendor advisories and patch information. Affected products include: Siemens Scalance Xb-200 Firmware, Siemens Scalance Xb-200, Siemens Scalance Xc-200 Firmware, Siemens Scalance Xc-200, Siemens Scalance Xf-200Ba Firmware.