CVE-2019-6569
Last modified
CVE-2019-6569 is a critical-severity vulnerability rated 9.1/10 on the CVSS scale. The monitor barrier of the affected products insufficiently blocks data from being forwarded over the mirror port into the mirrored network. An attacker could use this behavior to transmit malicious packets to systems in the mirrored network, possibly influencing their configuration and runtime behavior.. EPSS estimates a 1.33% chance of exploitation in the next 30 days.
Description
The monitor barrier of the affected products insufficiently blocks data from being forwarded over the mirror port into the mirrored network. An attacker could use this behavior to transmit malicious packets to systems in the mirrored network, possibly influencing their configuration and runtime behavior.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Siemens | Scalance X-200 Firmware | < 5.2.4 |
| Siemens | Scalance X-300 Firmware | < 4.1.3 |
| Siemens | Scalance Xp-200 Firmware | < 4.1 |
| Siemens | Scalance Xc-200 Firmware | < 4.1 |
| Siemens | Scalance Xf-200 Firmware | < 4.1 |
References
- https://cert-portal.siemens.com/productcert/pdf/ssa-557804.pdfPatch, Vendor Advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-557804.pdfPatch, Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2019-6569?
How severe is CVE-2019-6569?
How do I fix CVE-2019-6569?
Are you affected by CVE-2019-6569?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST