CVE-2018-13816
CRITICALTIM 1531 IRC Firmware < 2.0 - Unauthenticated Improper Access Control on Port 102/tcp
Title source: llmDescription
A vulnerability has been identified in TIM 1531 IRC (All version < V2.0). The devices was missing proper authentication on port 102/tcp, although configured. Successful exploitation requires an attacker to be able to send packets to port 102/tcp of the affected device. No user interaction and no user privileges are required to exploit the vulnerability. At the time of advisory publication no public exploitation of this vulnerability was known.
References (2)
Core 2
Core References
Vendor Advisory x_refsource_confirm
https://cert-portal.siemens.com/productcert/pdf/ssa-982399.pdf
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/106194
Scores
CVSS v3
10.0
EPSS
0.0292
EPSS Percentile
86.6%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Details
CWE
CWE-284
CWE-287
Status
published
Products (1)
siemens/tim_1531_irc_firmware
< 2.0
Published
Dec 12, 2018
Tracked Since
Feb 18, 2026