CVE-2019-13926

Beschreibung:
A vulnerability has been identified in SCALANCE S602 (All versions >= V3.0 and < V4.1), SCALANCE S612 (All versions >= V3.0 and < V4.1), SCALANCE S623 (All versions >= V3.0 and < V4.1), SCALANCE S627-2M (All versions >= V3.0 and < V4.1). Specially crafted packets sent to port 443/tcp of affected devices could cause a Denial-of-Service condition of the web server. A cold reboot is required to restore the functionality of the device. CWE: CWE-400

CVSS-Bewertung
CVSS 2: HIGH – 7.8 (Version: 2.0)
CVSS 3: HIGH – 7.5 (Version: 3.1)

Links:

NVD – CVE-2019-13926
CVE – CVE-2019-13926

Link (max. 20) Quelle Tags
https://cert-portal.siemens.com/productcert/pdf/ssa-591405.pdf MISC Vendor Advisory Vendor Advisory Patch Vendor Advisory
https://www.us-cert.gov/ics/advisories/icsa-20-042-10 MISC Third Party Advisory US Government Resource Third Party Advisory
openSUSE-SU-2020:0345 SUSE Broken Link Mailing List Third Party Advisory
[tomee-commits] 20200320 [jira] [Created] (TOMEE-2790) TomEE plus(7.0.7) is affected by CVE-2020-1935 & CVE-2019-17569 vulnerabilities MLIST Mailing List Vendor Advisory
[tomee-commits] 20200323 [jira] [Commented] (TOMEE-2790) TomEE plus(7.0.7) is affected by CVE-2020-1935 & CVE-2019-17569 vulnerabilities MLIST Mailing List Vendor Advisory
https://security.netapp.com/advisory/ntap-20200327-0005/ CONFIRM Third Party Advisory Vendor Advisory
DSA-4673 DEBIAN Third Party Advisory Vendor Advisory
DSA-4680 DEBIAN Third Party Advisory Vendor Advisory
[debian-lts-announce] 20200528 [SECURITY] [DLA 2209-1] tomcat8 security update MLIST Mailing List Third Party Advisory
https://www.oracle.com/security-alerts/cpujul2020.html MISC Third Party Advisory Vendor Advisory
[tomcat-users] 20200724 CVE-2020-1935 MLIST Mailing List Vendor Advisory Vendor Advisory
[tomcat-users] 20200724 Re: CVE-2020-1935 MLIST Mailing List Vendor Advisory
[tomcat-users] 20200724 RE: CVE-2020-1935 MLIST Mailing List Vendor Advisory Vendor Advisory
[tomcat-users] 20200726 Re: CVE-2020-1935 MLIST Mailing List Vendor Advisory Vendor Advisory
[tomcat-users] 20200727 RE: CVE-2020-1935 MLIST Mailing List Vendor Advisory
USN-4448-1 UBUNTU Third Party Advisory Vendor Advisory
https://www.oracle.com/security-alerts/cpuoct2020.html MISC Third Party Advisory Vendor Advisory
https://www.oracle.com/security-alerts/cpujan2021.html MISC Third Party Advisory Vendor Advisory
[tomcat-dev] 20210428 [Bug 65272] Problems proccessing HTTP request without CR in last versions MLIST Mailing List Vendor Advisory
[kafka-jira] 20200515 [jira] [Commented] (KAFKA-9997) upgrade log4j lib to address CVE-2020-9488 MLIST Mailing List Vendor Advisory

Quelle: NVD – CVE-2019-13926
Datum Veröffentlichung: 2020-02-11T16:15Z, Datum letzte Änderung: 2021-05-05T15:03Z