CVE-2014-2590

{"id": "CVE-2014-2590", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2014-04-01T06:29:39.423", "references": [{"url": "http://ics-cert.us-cert.gov/advisories/ICSA-14-087-01", "tags": ["Permissions Required", "Third Party Advisory", "US Government Resource"], "source": "cve@mitre.org"}, {"url": "http://www.siemens.com/innovation/pool/de/forschungsfelder/siemens_security_advisory_ssa-831997.pdf", "tags": ["Broken Link", "Vendor Advisory"], "source": "cve@mitre.org"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-306"}]}], "descriptions": [{"lang": "en", "value": "The web management interface in Siemens RuggedCom ROS before 3.11, ROS 3.11 before 3.11.5 for RS950G, ROS 3.12, and ROS 4.0 for RSG2488 allows remote attackers to cause a denial of service (interface outage) via crafted HTTP packets."}, {"lang": "es", "value": "La interfaz de gesti\u00f3n de web en Siemens RuggedCom ROS anterior a 3.11, ROS 3.11 anterior a 3.11.5 para RS950G, ROS 3.12 y ROS 4.0 para RSG2488 permite a atacantes remotos causar una denegaci\u00f3n de servicio (interrupci\u00f3n de interfaz) a trav\u00e9s de paquetes HTTP manipulados."}], "lastModified": "2022-02-01T16:53:42.707", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:ruggedcom_rugged_operating_system:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "11FE132C-D1E1-487E-90CE-1F31D34B76B8", "versionEndExcluding": "3.11.0"}, {"criteria": "cpe:2.3:o:siemens:ruggedcom_rugged_operating_system:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2A152213-037D-4EFB-840B-AB7C61F28552", "versionEndExcluding": "3.12.4", "versionStartIncluding": "3.12"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:ruggedcom_rs950g:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "2BD76866-38FD-40E2-8459-E56817BD80A7"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:ruggedcom_rugged_operating_system:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "84864DA2-5275-40C4-882F-045011154A5F", "versionEndExcluding": "3.11.5", "versionStartExcluding": "3.11.0"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:ruggedcom_rsg2488:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "7F1DB4EF-5CB1-43BA-AB1F-6D6D48ED859C"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:ruggedcom_rugged_operating_system:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3A69238A-A5B6-4475-AB71-A94096313503", "versionEndExcluding": "4.1.0", "versionStartExcluding": "4.0"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "cve@mitre.org"}