VDB
SSA-389290
SSA-389290
PUBLISHED
CVSS 5.900000095367432 MEDIUM
71 vulnerabilities in third-party components as Node.js, cURL, SQLite, CivetWeb and DNS(ISC BIND) could allow an attacker to interfere with the affected product in various ways. Siemens has released an update for SINEC INS and recommends to update to the latest versions.
Risk Scores
CVSS 3.1
5.900000095367432
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| SINEC INS |
Exploit Intelligence
- Mutation testing on X.509 Certificate Validation IN OpenSSL v.1.1.1h, based on CVE-2021-3450. (github-poc)
- Mutation testing on X.509 Certificate Validation IN OpenSSL v.1.1.1h, based on CVE-2021-3450. (github-poc)
- Mutation testing on X.509 Certificate Validation IN OpenSSL v.1.1.1h, based on CVE-2021-3450. (github-poc-repo)
- Mutation testing on X.509 Certificate Validation IN OpenSSL v.1.1.1h, based on CVE-2021-3450. (github-poc-repo)
- CVE-2021-3449 OpenSSL denial-of-service exploit 👨🏻💻 (github-poc)
- CVE-2021-3449 OpenSSL denial-of-service exploit 👨🏻💻 (github-poc)
- https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf (circl)
- https://cert-portal.siemens.com/productcert/txt/ssa-389290.txt (circl)
- https://cert-portal.siemens.com/productcert/csaf/ssa-389290.json (circl)
- https://support.industry.siemens.com/cs/ww/en/view/109806100/ (circl)
…and 14 more exploits
Timeline
- CVE Published