VDB
ICSA-21-103-10
ICSA-21-103-10
PUBLISHED
CVSS 4.900000095367432 MEDIUM
Successful exploitation of these vulnerabilities may allow an attacker to read and write arbitrary files and sensitive data and execute commands and arbitrary code.
Risk Scores
CVSS v3.1
4.900000095367432
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N/E:F/RL:U/RC:C
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Control Center Server (CCS) |
Timeline
- Apr 13, 2021 CVE Published
References
- https://cert-portal.siemens.com/productcert/csaf/ssa-761844.json url
- https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2021/icsa-21-103-10.json advisory
- https://www.cisa.gov/news-events/ics-advisories/icsa-21-103-10 advisory
- https://us-cert.cisa.gov/ics/alerts/ICS-ALERT-10-301-01 url
- https://us-cert.cisa.gov/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf url
- https://us-cert.cisa.gov/ics/tips/ICS-TIP-12-146-01B url
- https://cert-portal.siemens.com/productcert/pdf/ssa-761844.pdf url
- https://cert-portal.siemens.com/productcert/txt/ssa-761844.txt url
- https://sivms.cloud/control-center-server-ccs/ fix