CVE-2019-18321

Name of the Vulnerable Software and Affected Versions SPPA-T3000 MS3000 Migration Server (All versions)

Description A vulnerability has been identified that allows an attacker with network access to the MS3000 Server to read and write arbitrary files on the local file system by sending specifically crafted packets to port 5010/tcp. The attacker needs to have network access to the MS3000 in order to exploit this issue. At the time of advisory publication, no public exploitation of this security issue was known.

Recommendations For SPPA-T3000 MS3000 Migration Server, restrict access to port 5010/tcp to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.