Detections
Analytics
Siemens Scalance S Security Module Firewall < 2.3.0.3 Brute Force
critical Nessus Network Monitor Plugin ID 720015
Synopsis
The web server on the Siemens Scalance S Security Module is vulnerable to a brute force attack.Description
The web server on the Siemens Scalance S Security Module firewall S602 V2, S612 V2, and S613 V2 with firmware before 2.3.0.3 does not limit the rate of authentication attempts, which makes it easier for remote attackers to obtain access via a brute-force attack on the administrative password.Solution
Perform vendor recommended mitigations and apply available vendor upgrades.See Also
Plugin Details
Severity: Critical
ID: 720015
Family: SCADA
Published: 5/8/2019
Updated: 9/30/2019
Risk Information
VPR
Risk Factor: Medium
Score: 5.9
CVSS v2
Risk Factor: Critical
Base Score: 10
Temporal Score: 7.4
Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C
Vulnerability Information
Patch Publication Date: 4/11/2012
Vulnerability Publication Date: 4/11/2012
Reference Information
CVE: CVE-2012-1799