NVD

Vulnerability Change Records for CVE-2018-11454

Action	Type	Old Value	New Value
Added	CVSS V3		AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
Added	CVSS V2		(AV:L/AC:M/Au:N/C:P/I:P/A:P)
Added	CWE		CWE-264
Added	CPE Configuration		OR cpe:2.3:a:siemens:simatic_step_7_\(tia_portal\):10.0::::::: cpe:2.3:a:siemens:simatic_step_7_\(tia_portal\):11.0::::::: cpe:2.3:a:siemens:simatic_step_7_\(tia_portal\):12.0::::::: cpe:2.3:a:siemens:simatic_step_7_\(tia_portal\):13.0::::::: cpe:2.3:a:siemens:simatic_step_7_\(tia_portal\):13.0:sp1::::::* cpe:2.3:a:siemens:simatic_step_7_\(tia_portal\):14.0::::::: cpe:2.3:a:siemens:simatic_step_7_\(tia_portal\):15.0::::::: cpe:2.3:a:siemens:simatic_wincc_\(tia_portal\):10.0::::::: cpe:2.3:a:siemens:simatic_wincc_\(tia_portal\):11.0::::::: cpe:2.3:a:siemens:simatic_wincc_\(tia_portal\):12.0::::::: cpe:2.3:a:siemens:simatic_wincc_\(tia_portal\):13.0::::::: cpe:2.3:a:siemens:simatic_wincc_\(tia_portal\):14.0::::::: cpe:2.3:a:siemens:simatic_wincc_\(tia_portal\):15.0:::::::
Changed	Reference Type	http://www.securityfocus.com/bid/105115 No Types Assigned	http://www.securityfocus.com/bid/105115 Third Party Advisory, VDB Entry
Changed	Reference Type	https://cert-portal.siemens.com/productcert/pdf/ssa-979106.pdf No Types Assigned	https://cert-portal.siemens.com/productcert/pdf/ssa-979106.pdf Vendor Advisory
Added	CVSS V2 Metadata		Victim must voluntarily interact with attack mechanism