CVE-2016-9156

EUVD-2016-9973
A vulnerability in Siemens SICAM PAS (all versions before V8.09) could allow a remote attacker to upload, download, or delete files in certain parts of the file system by sending specially crafted packets to port 19235/TCP.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.3 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Base Score
CVSS 3.x
EPSS Score
Percentile: 65%
Affected Products (NVD)
VendorProductVersion
siemenssicam_pas\/pqs
𝑥
< 8.09
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.securityfocus.com/bid/94549
http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-946325.pdf
http://www.securityfocus.com/bid/94549
http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-946325.pdf