CVE-2015-1358

The remote-management module in the (1) Multi Panels, (2) Comfort Panels, and (3) RT Advanced functionality in Siemens SIMATIC WinCC (TIA Portal) before 13 SP1 and in the (4) panels and (5) runtime functionality in SIMATIC WinCC flexible before 2008 SP3 Up7 does not properly encrypt credentials in transit, which makes it easier for remote attackers to determine cleartext credentials by sniffing the network and conducting a decryption attack.

CVSS v2.0 5.0 MEDIUM

5.0^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References

Link	Resource
http://www.siemens.com/innovation/pool/de/forschungsfelder/siemens_security_advisory_ssa-543623.pdf	Vendor Advisory
https://ics-cert.us-cert.gov/advisories/ICSA-16-161-02	US Government Resource
http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-526760.pdf
http://www.securityfocus.com/bid/72625
http://www.securitytracker.com/id/1036090

Advertisement

Configurations

Configuration 1 (hide)

cpe:2.3:a:siemens:wincc:13.0:*:*:*:*:*:*:*

Information

Published : 2015-02-17 18:59

Updated : 2016-11-29 18:59

NVD link : CVE-2015-1358

Mitre link : CVE-2015-1358

JSON object : View

CWE

CWE-310

Cryptographic Issues

Advertisement

Products Affected

siemens

wincc

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://www.siemens.com/innovation/pool/de/forschungsfelder/siemens_security_advisory_ssa-543623.pdf", "name": "http://www.siemens.com/innovation/pool/de/forschungsfelder/siemens_security_advisory_ssa-543623.pdf", "tags": ["Vendor Advisory"], "refsource": "CONFIRM"}, {"url": "https://ics-cert.us-cert.gov/advisories/ICSA-16-161-02", "name": "https://ics-cert.us-cert.gov/advisories/ICSA-16-161-02", "tags": ["US Government Resource"], "refsource": "MISC"}, {"url": "http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-526760.pdf", "name": "http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-526760.pdf", "tags": [], "refsource": "CONFIRM"}, {"url": "http://www.securityfocus.com/bid/72625", "name": "72625", "tags": [], "refsource": "BID"}, {"url": "http://www.securitytracker.com/id/1036090", "name": "1036090", "tags": [], "refsource": "SECTRACK"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "The remote-management module in the (1) Multi Panels, (2) Comfort Panels, and (3) RT Advanced functionality in Siemens SIMATIC WinCC (TIA Portal) before 13 SP1 and in the (4) panels and (5) runtime functionality in SIMATIC WinCC flexible before 2008 SP3 Up7 does not properly encrypt credentials in transit, which makes it easier for remote attackers to determine cleartext credentials by sniffing the network and conducting a decryption attack."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-310"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2015-1358", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "severity": "MEDIUM", "impactScore": 2.9, "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2015-02-18T02:59Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:siemens:wincc:13.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2016-11-30T02:59Z"}