CVE-2018-4833
HIGHSiemens Rfid 181-eip Firmware < 5.2.3 - Heap Buffer Overflow
Title source: ruleDescription
A vulnerability has been identified in RFID 181EIP (All versions), RUGGEDCOM Win (V4.4, V4.5, V5.0, and V5.1), SCALANCE X-200 switch family (incl. SIPLUS NET variants) (All versions < V5.2.3), SCALANCE X-200IRT switch family (incl. SIPLUS NET variants) (All versions < V5.4.1), SCALANCE X-200RNA switch family (All versions < V3.2.6), SCALANCE X-300 switch family (incl. SIPLUS NET variants) (All versions < V4.1.3), SCALANCE X408 (All versions < V4.1.3), SCALANCE X414 (All versions), SIMATIC RF182C (All versions). Unprivileged remote attackers located in the same local network segment (OSI Layer 2) could gain remote code execution on the affected products by sending a specially crafted DHCP response to a client's DHCP request.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_misc
https://cert-portal.siemens.com/productcert/pdf/ssa-181018.pdf
Scores
CVSS v3
8.8
EPSS
0.0060
EPSS Percentile
69.5%
Attack Vector
ADJACENT_NETWORK
CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-20
CWE-122
Status
published
Products (10)
siemens/rfid_181-eip_firmware
siemens/ruggedcom_wimax_firmware
4.4
siemens/ruggedcom_wimax_firmware
4.5
siemens/scalance_x200_firmware
< 5.2.3
siemens/scalance_x200irt_firmware
< 5.4.1
siemens/scalance_x204rna_firmware
siemens/scalance_x300_firmware
siemens/scalance_x408_firmware
siemens/scalance_x414_firmware
siemens/simatic_rf182c_firmware
Published
Jun 14, 2018
Tracked Since
Feb 18, 2026