VDB
SSA-497656
SSA-497656
PUBLISHED
CVSS 7.5 HIGH
TIM 4R-IE devices contain multiple vulnerabilities in the integrated NTP component as listed below. Siemens recommends specific countermeasures for products where fixes are not, or not yet available.
Risk Scores
CVSS 3.1
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| TIM 4R-IE DNP3 (6NH7803-4BA00-0AA0) | ||
| SIPLUS NET TIM 4R-IE (6AG1800-4BA00-7AA0) | ||
| TIM 4R-IE (6NH7800-4BA00) | ||
| SIPLUS NET TIM 4R-IE DNP3 (6AG1803-4BA00-7AA0) |
Exploit Intelligence
- Trinadh465/linux-4.1.15_CVE-2017-1000371 (github-poc)
- CVE-2017-1000367 (github-poc)
- own implementation of the CVE-2017-1000367 sudo privilege escalation vulnerability in python (github-poc)
- homjxi0e/CVE-2017-1000367 (github-poc)
- c0d3z3r0/sudo-CVE-2017-1000367 (github-poc)
- https://cert-portal.siemens.com/productcert/html/ssa-497656.html (circl)
- https://cert-portal.siemens.com/productcert/csaf/ssa-497656.json (circl)
Timeline
- Apr 13, 2021 CVE Published
- Jun 10, 2025 CVE Updated