What is CVE-2016-9154?

CVE-2016-9154 is a high-severity vulnerability in Siemens Desigo_web_module_pxa30-w0, classified under CWE-332. CVSS score: 7.5/10. Published 2016-12-23.

How severe is CVE-2016-9154?

High severity. CVSS v3 base score is 7.5 out of 10.

Vulnerability in Siemens Desigo_web_module_pxa30-w0

CVE-2016-9154

Siemens Desigo PX Web modules PXA40-W0, PXA40-W1, PXA40-W2 for Desigo PX automation controllers PXC00-E.D, PXC50-E.D, PXC100-E.D, PXC200-E.D (All firmware versions < V6.00.046) and Desigo PX Web modules PXA30-W0, PXA30-W1, PXA30-W2 for Des…

EPSS: 0.012 (79.0th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.5 (High). Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N.

Affected products

Weakness classification (CWE)

CWE-332

References

productcert@siemens.com (x_refsource_CONFIRM, Mitigation, Vendor Advisory)
94962 (Third Party Advisory, VDB Entry, vdb-entry, x_refsource_BID)
productcert@siemens.com (US Government Resource, Third Party Advisory, x_refsource_MISC)

Frequently asked questions

What is CVE-2016-9154?: CVE-2016-9154 is a high-severity vulnerability in Siemens Desigo_web_module_pxa30-w0, classified under CWE-332. CVSS score: 7.5/10. Published 2016-12-23.
How severe is CVE-2016-9154?: High severity. CVSS v3 base score is 7.5 out of 10.