VAR-201905-1074
Vulnerability from variot - Updated: 2024-12-28 22:51A vulnerability has been identified in LOGO! 8 BM (incl. SIPLUS variants) (All versions < V8.3). Project data stored on the device, which is accessible via port 10005/tcp, can be decrypted due to a hardcoded encryption key. The security vulnerability could be exploited by an unauthenticated attacker with network access to port 10005/tcp. No user interaction is required to exploit this security vulnerability. The vulnerability impacts confidentiality of the device. At the time of advisory publication no public exploitation of this security vulnerability was known. LOGO!8 BM contains a vulnerability related to the use of hardcoded encryption keys.Information may be obtained. LOGO!8 is Siemens' 8th generation intelligent logic controller, which is a Nano PLC in the Siemens PLC family. It simplifies the programming configuration, the integrated panel can display more content, and can be easily networked through the integrated Ethernet interface. Efficient interconnection. An information disclosure vulnerability exists in Siemens LOGO!8 BM. An attacker can exploit these issues to obtain sensitive information. Successful exploits may lead to other attacks. All versions of LOGO!8 BM are vulnerable. This vulnerability stems from the lack of an effective trust management mechanism in network systems or products. Attackers can use default passwords or hard-coded passwords, hard-coded certificates, etc. to attack affected components
Show details on source website{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-201905-1074",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": "logo\\!8 bm",
"scope": "lt",
"trust": 1.0,
"vendor": "siemens",
"version": "8.3"
},
{
"model": "logo\\!8 bm",
"scope": "eq",
"trust": 1.0,
"vendor": "siemens",
"version": "*"
},
{
"model": "logo! 8 bm",
"scope": "eq",
"trust": 0.8,
"vendor": "\u30b7\u30fc\u30e1\u30f3\u30b9",
"version": "logo! 8 bm firmware"
},
{
"model": "logo! 8 bm",
"scope": "eq",
"trust": 0.8,
"vendor": "\u30b7\u30fc\u30e1\u30f3\u30b9",
"version": null
},
{
"model": "logo!8 bm",
"scope": null,
"trust": 0.6,
"vendor": "siemens",
"version": null
},
{
"model": "logo!8 bm",
"scope": "eq",
"trust": 0.3,
"vendor": "siemens",
"version": "0"
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "logo 8 bm",
"version": "*"
}
],
"sources": [
{
"db": "IVD",
"id": "5847bd4d-7106-4b17-b9fe-897506321608"
},
{
"db": "CNVD",
"id": "CNVD-2019-17522"
},
{
"db": "BID",
"id": "108382"
},
{
"db": "JVNDB",
"id": "JVNDB-2019-004557"
},
{
"db": "NVD",
"id": "CVE-2019-10920"
}
]
},
"credits": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/credits#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Manuel Stotz and Matthias Deeg from SySS GmbH reported these vulnerabilities to Siemens.",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201905-599"
}
],
"trust": 0.6
},
"cve": "CVE-2019-10920",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "nvd@nist.gov",
"availabilityImpact": "NONE",
"baseScore": 5.0,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 10.0,
"id": "CVE-2019-10920",
"impactScore": 2.9,
"integrityImpact": "NONE",
"severity": "MEDIUM",
"trust": 1.9,
"vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "CNVD",
"availabilityImpact": "NONE",
"baseScore": 5.0,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 10.0,
"id": "CNVD-2019-17522",
"impactScore": 2.9,
"integrityImpact": "NONE",
"severity": "MEDIUM",
"trust": 0.6,
"vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "IVD",
"availabilityImpact": "NONE",
"baseScore": 5.0,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 10.0,
"id": "5847bd4d-7106-4b17-b9fe-897506321608",
"impactScore": 2.9,
"integrityImpact": "NONE",
"severity": "MEDIUM",
"trust": 0.2,
"vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
"version": "2.9 [IVD]"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "VULHUB",
"availabilityImpact": "NONE",
"baseScore": 5.0,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 10.0,
"id": "VHN-142515",
"impactScore": 2.9,
"integrityImpact": "NONE",
"severity": "MEDIUM",
"trust": 0.1,
"vectorString": "AV:N/AC:L/AU:N/C:P/I:N/A:N",
"version": "2.0"
}
],
"cvssV3": [
{
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"author": "nvd@nist.gov",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"exploitabilityScore": 3.9,
"id": "CVE-2019-10920",
"impactScore": 3.6,
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"trust": 1.0,
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
{
"attackComplexity": "Low",
"attackVector": "Network",
"author": "NVD",
"availabilityImpact": "None",
"baseScore": 7.5,
"baseSeverity": "High",
"confidentialityImpact": "High",
"exploitabilityScore": null,
"id": "CVE-2019-10920",
"impactScore": null,
"integrityImpact": "None",
"privilegesRequired": "None",
"scope": "Unchanged",
"trust": 0.8,
"userInteraction": "None",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
}
],
"severity": [
{
"author": "nvd@nist.gov",
"id": "CVE-2019-10920",
"trust": 1.0,
"value": "HIGH"
},
{
"author": "NVD",
"id": "CVE-2019-10920",
"trust": 0.8,
"value": "High"
},
{
"author": "CNVD",
"id": "CNVD-2019-17522",
"trust": 0.6,
"value": "MEDIUM"
},
{
"author": "CNNVD",
"id": "CNNVD-201905-599",
"trust": 0.6,
"value": "HIGH"
},
{
"author": "IVD",
"id": "5847bd4d-7106-4b17-b9fe-897506321608",
"trust": 0.2,
"value": "HIGH"
},
{
"author": "VULHUB",
"id": "VHN-142515",
"trust": 0.1,
"value": "MEDIUM"
},
{
"author": "VULMON",
"id": "CVE-2019-10920",
"trust": 0.1,
"value": "MEDIUM"
}
]
}
],
"sources": [
{
"db": "IVD",
"id": "5847bd4d-7106-4b17-b9fe-897506321608"
},
{
"db": "CNVD",
"id": "CNVD-2019-17522"
},
{
"db": "VULHUB",
"id": "VHN-142515"
},
{
"db": "VULMON",
"id": "CVE-2019-10920"
},
{
"db": "JVNDB",
"id": "JVNDB-2019-004557"
},
{
"db": "CNNVD",
"id": "CNNVD-201905-599"
},
{
"db": "NVD",
"id": "CVE-2019-10920"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "A vulnerability has been identified in LOGO! 8 BM (incl. SIPLUS variants) (All versions \u003c V8.3). Project data stored on the device, which is accessible via port 10005/tcp, can be decrypted due to a hardcoded encryption key. The security vulnerability could be exploited by an unauthenticated attacker with network access to port 10005/tcp. No user interaction is required to exploit this security vulnerability. The vulnerability impacts confidentiality of the device. At the time of advisory publication no public exploitation of this security vulnerability was known. LOGO!8 BM contains a vulnerability related to the use of hardcoded encryption keys.Information may be obtained. LOGO!8 is Siemens\u0027 8th generation intelligent logic controller, which is a Nano PLC in the Siemens PLC family. It simplifies the programming configuration, the integrated panel can display more content, and can be easily networked through the integrated Ethernet interface. Efficient interconnection. An information disclosure vulnerability exists in Siemens LOGO!8 BM. \nAn attacker can exploit these issues to obtain sensitive information. Successful exploits may lead to other attacks. \nAll versions of LOGO!8 BM are vulnerable. This vulnerability stems from the lack of an effective trust management mechanism in network systems or products. Attackers can use default passwords or hard-coded passwords, hard-coded certificates, etc. to attack affected components",
"sources": [
{
"db": "NVD",
"id": "CVE-2019-10920"
},
{
"db": "JVNDB",
"id": "JVNDB-2019-004557"
},
{
"db": "CNVD",
"id": "CNVD-2019-17522"
},
{
"db": "BID",
"id": "108382"
},
{
"db": "IVD",
"id": "5847bd4d-7106-4b17-b9fe-897506321608"
},
{
"db": "VULHUB",
"id": "VHN-142515"
},
{
"db": "VULMON",
"id": "CVE-2019-10920"
}
],
"trust": 2.79
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "NVD",
"id": "CVE-2019-10920",
"trust": 4.5
},
{
"db": "SIEMENS",
"id": "SSA-542701",
"trust": 2.4
},
{
"db": "BID",
"id": "108382",
"trust": 2.1
},
{
"db": "PACKETSTORM",
"id": "153122",
"trust": 1.8
},
{
"db": "ICS CERT",
"id": "ICSA-19-134-04",
"trust": 1.8
},
{
"db": "CNNVD",
"id": "CNNVD-201905-599",
"trust": 0.9
},
{
"db": "CNVD",
"id": "CNVD-2019-17522",
"trust": 0.8
},
{
"db": "JVNDB",
"id": "JVNDB-2019-004557",
"trust": 0.8
},
{
"db": "ICS CERT",
"id": "ICSA-19-134-02",
"trust": 0.6
},
{
"db": "AUSCERT",
"id": "ESB-2019.1716.2",
"trust": 0.6
},
{
"db": "IVD",
"id": "5847BD4D-7106-4B17-B9FE-897506321608",
"trust": 0.2
},
{
"db": "VULHUB",
"id": "VHN-142515",
"trust": 0.1
},
{
"db": "VULMON",
"id": "CVE-2019-10920",
"trust": 0.1
}
],
"sources": [
{
"db": "IVD",
"id": "5847bd4d-7106-4b17-b9fe-897506321608"
},
{
"db": "CNVD",
"id": "CNVD-2019-17522"
},
{
"db": "VULHUB",
"id": "VHN-142515"
},
{
"db": "VULMON",
"id": "CVE-2019-10920"
},
{
"db": "BID",
"id": "108382"
},
{
"db": "JVNDB",
"id": "JVNDB-2019-004557"
},
{
"db": "CNNVD",
"id": "CNNVD-201905-599"
},
{
"db": "NVD",
"id": "CVE-2019-10920"
}
]
},
"id": "VAR-201905-1074",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "IVD",
"id": "5847bd4d-7106-4b17-b9fe-897506321608"
},
{
"db": "CNVD",
"id": "CNVD-2019-17522"
},
{
"db": "VULHUB",
"id": "VHN-142515"
}
],
"trust": 1.6913690200000002
},
"iot_taxonomy": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"category": [
"ICS"
],
"sub_category": null,
"trust": 0.8
}
],
"sources": [
{
"db": "IVD",
"id": "5847bd4d-7106-4b17-b9fe-897506321608"
},
{
"db": "CNVD",
"id": "CNVD-2019-17522"
}
]
},
"last_update_date": "2024-12-28T22:51:38.154000Z",
"patch": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/patch#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"title": "SSA-542701",
"trust": 0.8,
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-542701.pdf"
},
{
"title": "Siemens LOGO! 8 BM Information Disclosure Vulnerability Patch",
"trust": 0.6,
"url": "https://www.cnvd.org.cn/patchInfo/show/163683"
},
{
"title": "Siemens Security Advisories: Siemens Security Advisory",
"trust": 0.1,
"url": "https://vulmon.com/vendoradvisory?qidtp=siemens_security_advisories\u0026qid=f5fb9ce0e2d1f9a70355e7812f9314f9"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2019-17522"
},
{
"db": "VULMON",
"id": "CVE-2019-10920"
},
{
"db": "JVNDB",
"id": "JVNDB-2019-004557"
}
]
},
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "CWE-798",
"trust": 1.1
},
{
"problemtype": "CWE-321",
"trust": 1.0
},
{
"problemtype": "Using hardcoded encryption keys (CWE-321) [ others ]",
"trust": 0.8
},
{
"problemtype": " Use hard-coded credentials (CWE-798) [NVD evaluation ]",
"trust": 0.8
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-142515"
},
{
"db": "JVNDB",
"id": "JVNDB-2019-004557"
},
{
"db": "NVD",
"id": "CVE-2019-10920"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 3.1,
"url": "http://packetstormsecurity.com/files/153122/siemens-logo-8-hard-coded-cryptographic-key.html"
},
{
"trust": 3.0,
"url": "http://www.securityfocus.com/bid/108382"
},
{
"trust": 2.4,
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-542701.pdf"
},
{
"trust": 1.8,
"url": "https://seclists.org/bugtraq/2019/may/72"
},
{
"trust": 1.8,
"url": "http://seclists.org/fulldisclosure/2019/may/44"
},
{
"trust": 1.4,
"url": "https://nvd.nist.gov/vuln/detail/cve-2019-10920"
},
{
"trust": 1.0,
"url": "https://ics-cert.us-cert.gov/advisories/icsa-19-134-04"
},
{
"trust": 0.9,
"url": "http://www.siemens.com/"
},
{
"trust": 0.8,
"url": "https://www.us-cert.gov/ics/advisories/icsa-19-134-04"
},
{
"trust": 0.6,
"url": "https://ics-cert.us-cert.gov/advisories/icsa-19-134-02-0"
},
{
"trust": 0.6,
"url": "https://us-cert.cisa.gov/ics/advisories/icsa-19-134-04"
},
{
"trust": 0.6,
"url": "https://www.auscert.org.au/bulletins/80946"
},
{
"trust": 0.1,
"url": "https://cwe.mitre.org/data/definitions/321.html"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2019-17522"
},
{
"db": "VULHUB",
"id": "VHN-142515"
},
{
"db": "VULMON",
"id": "CVE-2019-10920"
},
{
"db": "BID",
"id": "108382"
},
{
"db": "JVNDB",
"id": "JVNDB-2019-004557"
},
{
"db": "CNNVD",
"id": "CNNVD-201905-599"
},
{
"db": "NVD",
"id": "CVE-2019-10920"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "IVD",
"id": "5847bd4d-7106-4b17-b9fe-897506321608"
},
{
"db": "CNVD",
"id": "CNVD-2019-17522"
},
{
"db": "VULHUB",
"id": "VHN-142515"
},
{
"db": "VULMON",
"id": "CVE-2019-10920"
},
{
"db": "BID",
"id": "108382"
},
{
"db": "JVNDB",
"id": "JVNDB-2019-004557"
},
{
"db": "CNNVD",
"id": "CNNVD-201905-599"
},
{
"db": "NVD",
"id": "CVE-2019-10920"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2019-06-16T00:00:00",
"db": "IVD",
"id": "5847bd4d-7106-4b17-b9fe-897506321608"
},
{
"date": "2019-05-22T00:00:00",
"db": "CNVD",
"id": "CNVD-2019-17522"
},
{
"date": "2019-05-14T00:00:00",
"db": "VULHUB",
"id": "VHN-142515"
},
{
"date": "2019-05-14T00:00:00",
"db": "VULMON",
"id": "CVE-2019-10920"
},
{
"date": "2019-05-14T00:00:00",
"db": "BID",
"id": "108382"
},
{
"date": "2019-06-04T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2019-004557"
},
{
"date": "2019-05-14T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201905-599"
},
{
"date": "2019-05-14T20:29:02.637000",
"db": "NVD",
"id": "CVE-2019-10920"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2019-06-16T00:00:00",
"db": "CNVD",
"id": "CNVD-2019-17522"
},
{
"date": "2019-05-30T00:00:00",
"db": "VULHUB",
"id": "VHN-142515"
},
{
"date": "2022-01-04T00:00:00",
"db": "VULMON",
"id": "CVE-2019-10920"
},
{
"date": "2019-05-14T00:00:00",
"db": "BID",
"id": "108382"
},
{
"date": "2024-12-27T03:14:00",
"db": "JVNDB",
"id": "JVNDB-2019-004557"
},
{
"date": "2020-12-15T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201905-599"
},
{
"date": "2024-11-21T04:20:09.217000",
"db": "NVD",
"id": "CVE-2019-10920"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "remote",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201905-599"
}
],
"trust": 0.6
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Siemens LOGO!8 BM Information Disclosure Vulnerability",
"sources": [
{
"db": "IVD",
"id": "5847bd4d-7106-4b17-b9fe-897506321608"
},
{
"db": "CNVD",
"id": "CNVD-2019-17522"
}
],
"trust": 0.8
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "trust management problem",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201905-599"
}
],
"trust": 0.6
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…