CVE-2018-5467 Vulnerability Details

  /     /     /  

CVE-2018-5467 Metadata Quick Info

CVE Published: 06/03/2018 | CVE Updated: 05/08/2024 | CVE Year: 2018
Source: icscert | Vendor: n/a | Product: Hirschmann Automation and Control GmbH Classic Platform Switches
Status : PUBLISHED

---

CVE-2018-5467 Description

An Information Exposure Through Query Strings in GET Request issue was discovered in Belden Hirschmann RS, RSR, RSB, MACH100, MACH1000, MACH4000, MS, and OCTOPUS Classic Platform Switches. An information exposure through query strings vulnerability in the web interface has been identified, which may allow an attacker to impersonate a legitimate user.

Metrics

CVSS Version: 3.1 | Base Score: n/a
Vector: n/a

l➤ Exploitability Metrics:
    Attack Vector (AV)*
    Attack Complexity (AC)*
    Privileges Required (PR)*
    User Interaction (UI)*
    Scope (S)*

l➤ Impact Metrics:
    Confidentiality Impact (C)*
    Integrity Impact (I)*
    Availability Impact (A)*

Weakness Enumeration (CWE)

CWE-ID: CWE-598
CWE Name: CWE-598
Source: n/a

Common Attack Pattern Enumeration and Classification (CAPEC)

CAPEC-ID:
CAPEC Description:


Source: NVD (National Vulnerability Database).