CVE-2019-18313

Name of the Vulnerable Software and Affected Versions SPPA-T3000 MS3000 Migration Server (All versions)

Description A vulnerability has been identified that allows an attacker with network access to the MS3000 Server to gain remote code execution by sending specifically crafted objects to one of the RPC services. Note that an attacker needs to have network access to the MS3000 in order to exploit this issue. At the time of advisory publication, no public exploitation of this security issue was known.

Recommendations For all versions, there is no information about a newer version that contains a fix for this issue. As a temporary workaround, consider restricting access to the RPC services to minimize the risk of exploitation.