How severe is CVE-2018-11466?

This vulnerability has a severity rating of CRITICAL with a CVSS score of 9.8 out of 10.

What type of vulnerability is CVE-2018-11466?

This is classified as CWE-248, which is a common weakness in software security.

CVE-2018-11466 - CRITICAL Severity | CVSS 9.8

Vulnerability Description

A vulnerability has been identified in SINUMERIK 808D V4.7 (All versions), SINUMERIK 808D V4.8 (All versions), SINUMERIK 828D V4.7 (All versions < V4.7 SP6 HF1), SINUMERIK 840D sl V4.7 (All versions < V4.7 SP6 HF5), SINUMERIK 840D sl V4.8 (All versions < V4.8 SP3). Specially crafted network packets sent to port 102/tcp (ISO-TSAP) could allow a remote attacker to either cause a Denial-of-Service condition of the integrated software firewall or allow to execute code in the context of the software firewall. The security vulnerability could be exploited by an attacker with network access to the affected systems on port 102/tcp. Successful exploitation requires no user privileges and no user interaction. The vulnerability could allow an attacker to compromise confidentiality, integrity and availability of the system. At the time of advisory publication no public exploitation of this security vulnerability was known

Related Vulnerabilities

CVE-2023-0790

HIGH

CVSS:8.8(High)

Uncaught Exception in GitHub repository thorsten/phpmyfaq prior to 3.1.11.

CWE-2482023

CVE-2023-20086

HIGH

CVSS:8.6(High)

A vulnerability in ICMPv6 processing of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a de...

CWE-2482023

CVE-2024-43357

HIGH

CVSS:8.6(High)

ECMA-262 is the language specification for the scripting language ECMAScript. A problem in the ECMAScript (JavaScript) specification of async generators, introduced by a May 2021 spec refactor, may le...

CWE-2482024

CVE-2023-23774

HIGH

CVSS:8.4(High)

Motorola EBTS/MBTS Site Controller drops to debug prompt on unhandled exception. The Motorola MBTS Site Controller exposes a debug prompt on the device's serial port in case of an unhandled exception....

CWE-2482023

CVE-2020-10292

HIGH

CVSS:8.2(High)

Visual Components (owned by KUKA) is a robotic simulator that allows simulating factories and robots in order toimprove planning and decision-making processes. Visual Components software requires a sp...

CWE-2482020

CVE-2023-0790

HIGH

CVSS:8.8(High)

Uncaught Exception in GitHub repository thorsten/phpmyfaq prior to 3.1.11.

CWE-2482023