CVE-2012-3028 - Vulnerability Details

Vendors	Products
Siemens	Simatic Pcs7 Wincc

Link	Providers
http://en.securitylab.ru/lab/PT-2012-42
http://www.siemens.com/corporate-technology/pool/de/forschungsfelder/siemens_security_advisory_ssa-864051.pdf
http://www.us-cert.gov/control_systems/pdf/ICSA-12-256-01.pdf

Show plain JSON

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "descriptions": [{"lang": "en", "value": "Cross-site request forgery (CSRF) vulnerability in WebNavigator in Siemens WinCC 7.0 SP3 and earlier, as used in SIMATIC PCS7 and other products, allows remote attackers to hijack the authentication of arbitrary users for requests that modify data or cause a denial of service."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2012-09-18T14:00:00Z", "orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6", "shortName": "icscert"}, "references": [{"tags": ["x_refsource_MISC"], "url": "http://en.securitylab.ru/lab/PT-2012-42"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.siemens.com/corporate-technology/pool/de/forschungsfelder/siemens_security_advisory_ssa-864051.pdf"}, {"tags": ["x_refsource_MISC"], "url": "http://www.us-cert.gov/control_systems/pdf/ICSA-12-256-01.pdf"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "ics-cert@hq.dhs.gov", "ID": "CVE-2012-3028", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Cross-site request forgery (CSRF) vulnerability in WebNavigator in Siemens WinCC 7.0 SP3 and earlier, as used in SIMATIC PCS7 and other products, allows remote attackers to hijack the authentication of arbitrary users for requests that modify data or cause a denial of service."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "http://en.securitylab.ru/lab/PT-2012-42", "refsource": "MISC", "url": "http://en.securitylab.ru/lab/PT-2012-42"}, {"name": "http://www.siemens.com/corporate-technology/pool/de/forschungsfelder/siemens_security_advisory_ssa-864051.pdf", "refsource": "CONFIRM", "url": "http://www.siemens.com/corporate-technology/pool/de/forschungsfelder/siemens_security_advisory_ssa-864051.pdf"}, {"name": "http://www.us-cert.gov/control_systems/pdf/ICSA-12-256-01.pdf", "refsource": "MISC", "url": "http://www.us-cert.gov/control_systems/pdf/ICSA-12-256-01.pdf"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T19:50:05.408Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://en.securitylab.ru/lab/PT-2012-42"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.siemens.com/corporate-technology/pool/de/forschungsfelder/siemens_security_advisory_ssa-864051.pdf"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://www.us-cert.gov/control_systems/pdf/ICSA-12-256-01.pdf"}]}]}, "cveMetadata": {"assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6", "assignerShortName": "icscert", "cveId": "CVE-2012-3028", "datePublished": "2012-09-18T14:00:00Z", "dateReserved": "2012-05-30T00:00:00Z", "dateUpdated": "2024-09-16T20:32:23.222Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{

containers : { »

cna : { »

affected : [ »

0 : { »

product : n/a (string)

vendor : n/a (string)

versions : [ »

0 : { »

status : affected (string)

version : n/a (string)

}

]

}

]

descriptions : [ »

0 : { »

lang : en (string)

value : Cross-site request forgery (CSRF) vulnerability in WebNavigator in Siemens WinCC 7.0 SP3 and earlier, as used in SIMATIC PCS7 and other products, allows remote attackers to hijack the authentication of arbitrary users for requests that modify data or cause a denial of service. (string)

}

]

problemTypes : [ »

0 : { »

descriptions : [ »

0 : { »

description : n/a (string)

lang : en (string)

type : text (string)

}

]

}

]

providerMetadata : { »

dateUpdated : 2012-09-18T14:00:00Z (string)

orgId : 7d14cffa-0d7d-4270-9dc0-52cabd5a23a6 (string)

shortName : icscert (string)

}

references : [ »

0 : { »

tags : [ »

0 : x_refsource_MISC (string)

]

url : http://en.securitylab.ru/lab/PT-2012-42 (string)

}

1 : { »

tags : [ »

0 : x_refsource_CONFIRM (string)

]

url : http://www.siemens.com/corporate-technology/pool/de/forschungsfelder/siemens_security_advisory_ssa-864051.pdf (string)

}

2 : { »

tags : [ »

0 : x_refsource_MISC (string)

]

url : http://www.us-cert.gov/control_systems/pdf/ICSA-12-256-01.pdf (string)

}

]

x_legacyV4Record : { »

CVE_data_meta : { »

ASSIGNER : ics-cert@hq.dhs.gov (string)

ID : CVE-2012-3028 (string)

STATE : PUBLIC (string)

}

affects : { »

vendor : { »

vendor_data : [ »

0 : { »

product : { »

product_data : [ »

0 : { »

product_name : n/a (string)

version : { »

version_data : [ »

0 : { »

version_value : n/a (string)

}

]

}

]

}

vendor_name : n/a (string)

}

]

}

data_format : MITRE (string)

data_type : CVE (string)

data_version : 4.0 (string)

description : { »

description_data : [ »

0 : { »

lang : eng (string)

value : Cross-site request forgery (CSRF) vulnerability in WebNavigator in Siemens WinCC 7.0 SP3 and earlier, as used in SIMATIC PCS7 and other products, allows remote attackers to hijack the authentication of arbitrary users for requests that modify data or cause a denial of service. (string)

}

]

}

problemtype : { »

problemtype_data : [ »

0 : { »

description : [ »

0 : { »

lang : eng (string)

value : n/a (string)

}

]

}

]

}

references : { »

reference_data : [ »

0 : { »

name : http://en.securitylab.ru/lab/PT-2012-42 (string)

refsource : MISC (string)

url : http://en.securitylab.ru/lab/PT-2012-42 (string)

}

1 : { »

name : http://www.siemens.com/corporate-technology/pool/de/forschungsfelder/siemens_security_advisory_ssa-864051.pdf (string)

refsource : CONFIRM (string)

url : http://www.siemens.com/corporate-technology/pool/de/forschungsfelder/siemens_security_advisory_ssa-864051.pdf (string)

}

2 : { »

name : http://www.us-cert.gov/control_systems/pdf/ICSA-12-256-01.pdf (string)

refsource : MISC (string)

url : http://www.us-cert.gov/control_systems/pdf/ICSA-12-256-01.pdf (string)

}

]

}

adp : [ »

0 : { »

providerMetadata : { »

orgId : af854a3a-2127-422b-91ae-364da2661108 (string)

shortName : CVE (string)

dateUpdated : 2024-08-06T19:50:05.408Z (string)

}

title : CVE Program Container (string)

references : [ »

0 : { »

tags : [ »

0 : x_refsource_MISC (string)

1 : x_transferred (string)

]

url : http://en.securitylab.ru/lab/PT-2012-42 (string)

}

1 : { »

tags : [ »

0 : x_refsource_CONFIRM (string)

1 : x_transferred (string)

]

url : http://www.siemens.com/corporate-technology/pool/de/forschungsfelder/siemens_security_advisory_ssa-864051.pdf (string)

}

2 : { »

tags : [ »

0 : x_refsource_MISC (string)

1 : x_transferred (string)

]

url : http://www.us-cert.gov/control_systems/pdf/ICSA-12-256-01.pdf (string)

}

]

}

]

}

cveMetadata : { »

assignerOrgId : 7d14cffa-0d7d-4270-9dc0-52cabd5a23a6 (string)

assignerShortName : icscert (string)

cveId : CVE-2012-3028 (string)

datePublished : 2012-09-18T14:00:00Z (string)

dateReserved : 2012-05-30T00:00:00Z (string)

dateUpdated : 2024-09-16T20:32:23.222Z (string)

state : PUBLISHED (string)

}

dataType : CVE_RECORD (string)

dataVersion : 5.1 (string)

}

Show plain JSON

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:siemens:simatic_pcs7:8.0:*:*:*:*:*:*:*", "matchCriteriaId": "E8B894F4-9635-4436-BC0A-E43280426017", "vulnerable": true}, {"criteria": "cpe:2.3:a:siemens:wincc:*:sp3:*:*:*:*:*:*", "matchCriteriaId": "5AC094B0-B1BE-436D-A8D3-2008D0CDE070", "versionEndIncluding": "7.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:siemens:wincc:5.0:*:*:*:*:*:*:*", "matchCriteriaId": "B4CB277F-7ECB-4F44-8BB5-A3D350486EE7", "vulnerable": true}, {"criteria": "cpe:2.3:a:siemens:wincc:5.0:sp1:*:*:*:*:*:*", "matchCriteriaId": "616535F1-F609-408B-AE48-61ACF48748A1", "vulnerable": true}, {"criteria": "cpe:2.3:a:siemens:wincc:6.0:*:*:*:*:*:*:*", "matchCriteriaId": "7F322FCB-32F4-4C5A-A7F5-F7EF41188C88", "vulnerable": true}, {"criteria": "cpe:2.3:a:siemens:wincc:6.0:sp2:*:*:*:*:*:*", "matchCriteriaId": "69822DB4-DC79-4F88-A470-5AC512C77377", "vulnerable": true}, {"criteria": "cpe:2.3:a:siemens:wincc:6.0:sp3:*:*:*:*:*:*", "matchCriteriaId": "996DE8BD-DD51-41EF-9882-C2BD2CC5FE53", "vulnerable": true}, {"criteria": "cpe:2.3:a:siemens:wincc:6.0:sp4:*:*:*:*:*:*", "matchCriteriaId": "945C8B46-4CDA-4143-889C-30E30E93DB29", "vulnerable": true}, {"criteria": "cpe:2.3:a:siemens:wincc:7.0:*:*:*:*:*:*:*", "matchCriteriaId": "A33F9015-7058-419A-8762-CB2AE4ACF1A7", "vulnerable": true}, {"criteria": "cpe:2.3:a:siemens:wincc:7.0:sp1:*:*:*:*:*:*", "matchCriteriaId": "E6271FCC-CCF6-4D31-801A-B4B0DC4639DD", "vulnerable": true}, {"criteria": "cpe:2.3:a:siemens:wincc:7.0:sp2:*:*:*:*:*:*", "matchCriteriaId": "DF7A6B2B-D573-4285-B3B4-136F2BE7E710", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Cross-site request forgery (CSRF) vulnerability in WebNavigator in Siemens WinCC 7.0 SP3 and earlier, as used in SIMATIC PCS7 and other products, allows remote attackers to hijack the authentication of arbitrary users for requests that modify data or cause a denial of service."}, {"lang": "es", "value": "Una vulnerabilidad de falsificaci\u00f3n de peticiones en sitios cruzados (CSRF) en WebNavigator en Siemens WinCC v7.0 SP3 y versiones anteriores, tal como se utiliza en SIMATIC PCS v7 y otros productos, permite a atacantes remotos provocar una denegaci\u00f3n de servicio o secuestrar la autenticaci\u00f3n de usuarios de su elecci\u00f3n para las peticiones que modifican datos."}], "id": "CVE-2012-3028", "lastModified": "2025-04-11T00:51:21.963", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}]}, "published": "2012-09-18T14:55:01.397", "references": [{"source": "ics-cert@hq.dhs.gov", "url": "http://en.securitylab.ru/lab/PT-2012-42"}, {"source": "ics-cert@hq.dhs.gov", "tags": ["Patch"], "url": "http://www.siemens.com/corporate-technology/pool/de/forschungsfelder/siemens_security_advisory_ssa-864051.pdf"}, {"source": "ics-cert@hq.dhs.gov", "url": "http://www.us-cert.gov/control_systems/pdf/ICSA-12-256-01.pdf"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://en.securitylab.ru/lab/PT-2012-42"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "http://www.siemens.com/corporate-technology/pool/de/forschungsfelder/siemens_security_advisory_ssa-864051.pdf"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.us-cert.gov/control_systems/pdf/ICSA-12-256-01.pdf"}], "sourceIdentifier": "ics-cert@hq.dhs.gov", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-352"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{

configurations : [ »

0 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:a:siemens:simatic_pcs7:8.0:*:*:*:*:*:*:* (string)

matchCriteriaId : E8B894F4-9635-4436-BC0A-E43280426017 (string)

vulnerable : true (boolean)

}

1 : { »

criteria : cpe:2.3:a:siemens:wincc:*:sp3:*:*:*:*:*:* (string)

matchCriteriaId : 5AC094B0-B1BE-436D-A8D3-2008D0CDE070 (string)

versionEndIncluding : 7.0 (string)

vulnerable : true (boolean)

}

2 : { »

criteria : cpe:2.3:a:siemens:wincc:5.0:*:*:*:*:*:*:* (string)

matchCriteriaId : B4CB277F-7ECB-4F44-8BB5-A3D350486EE7 (string)

vulnerable : true (boolean)

}

3 : { »

criteria : cpe:2.3:a:siemens:wincc:5.0:sp1:*:*:*:*:*:* (string)

matchCriteriaId : 616535F1-F609-408B-AE48-61ACF48748A1 (string)

vulnerable : true (boolean)

}

4 : { »

criteria : cpe:2.3:a:siemens:wincc:6.0:*:*:*:*:*:*:* (string)

matchCriteriaId : 7F322FCB-32F4-4C5A-A7F5-F7EF41188C88 (string)

vulnerable : true (boolean)

}

5 : { »

criteria : cpe:2.3:a:siemens:wincc:6.0:sp2:*:*:*:*:*:* (string)

matchCriteriaId : 69822DB4-DC79-4F88-A470-5AC512C77377 (string)

vulnerable : true (boolean)

}

6 : { »

criteria : cpe:2.3:a:siemens:wincc:6.0:sp3:*:*:*:*:*:* (string)

matchCriteriaId : 996DE8BD-DD51-41EF-9882-C2BD2CC5FE53 (string)

vulnerable : true (boolean)

}

7 : { »

criteria : cpe:2.3:a:siemens:wincc:6.0:sp4:*:*:*:*:*:* (string)

matchCriteriaId : 945C8B46-4CDA-4143-889C-30E30E93DB29 (string)

vulnerable : true (boolean)

}

8 : { »

criteria : cpe:2.3:a:siemens:wincc:7.0:*:*:*:*:*:*:* (string)

matchCriteriaId : A33F9015-7058-419A-8762-CB2AE4ACF1A7 (string)

vulnerable : true (boolean)

}

9 : { »

criteria : cpe:2.3:a:siemens:wincc:7.0:sp1:*:*:*:*:*:* (string)

matchCriteriaId : E6271FCC-CCF6-4D31-801A-B4B0DC4639DD (string)

vulnerable : true (boolean)

}

10 : { »

criteria : cpe:2.3:a:siemens:wincc:7.0:sp2:*:*:*:*:*:* (string)

matchCriteriaId : DF7A6B2B-D573-4285-B3B4-136F2BE7E710 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

}

]

cveTags : [ *empty* ]

descriptions : [ »

0 : { »

lang : en (string)

value : Cross-site request forgery (CSRF) vulnerability in WebNavigator in Siemens WinCC 7.0 SP3 and earlier, as used in SIMATIC PCS7 and other products, allows remote attackers to hijack the authentication of arbitrary users for requests that modify data or cause a denial of service. (string)

}

1 : { »

lang : es (string)

value : Una vulnerabilidad de falsificación de peticiones en sitios cruzados (CSRF) en WebNavigator en Siemens WinCC v7.0 SP3 y versiones anteriores, tal como se utiliza en SIMATIC PCS v7 y otros productos, permite a atacantes remotos provocar una denegación de servicio o secuestrar la autenticación de usuarios de su elección para las peticiones que modifican datos. (string)

}

]

id : CVE-2012-3028 (string)

lastModified : 2025-04-11T00:51:21.963 (string)

metrics : { »

cvssMetricV2 : [ »

0 : { »

acInsufInfo : false (boolean)

baseSeverity : MEDIUM (string)

cvssData : { »

accessComplexity : MEDIUM (string)

accessVector : NETWORK (string)

authentication : NONE (string)

availabilityImpact : PARTIAL (string)

baseScore : 6.8 (number)

confidentialityImpact : PARTIAL (string)

integrityImpact : PARTIAL (string)

vectorString : AV:N/AC:M/Au:N/C:P/I:P/A:P (string)

version : 2.0 (string)

}

exploitabilityScore : 8.6 (number)

impactScore : 6.4 (number)

obtainAllPrivilege : false (boolean)

obtainOtherPrivilege : false (boolean)

obtainUserPrivilege : false (boolean)

source : nvd@nist.gov (string)

type : Primary (string)

userInteractionRequired : true (boolean)

}

]

}

published : 2012-09-18T14:55:01.397 (string)

references : [ »

0 : { »

source : ics-cert@hq.dhs.gov (string)

url : http://en.securitylab.ru/lab/PT-2012-42 (string)

}

1 : { »

source : ics-cert@hq.dhs.gov (string)

tags : [ »

0 : Patch (string)

]

url : http://www.siemens.com/corporate-technology/pool/de/forschungsfelder/siemens_security_advisory_ssa-864051.pdf (string)

}

2 : { »

source : ics-cert@hq.dhs.gov (string)

url : http://www.us-cert.gov/control_systems/pdf/ICSA-12-256-01.pdf (string)

}

3 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

url : http://en.securitylab.ru/lab/PT-2012-42 (string)

}

4 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Patch (string)

]

url : http://www.siemens.com/corporate-technology/pool/de/forschungsfelder/siemens_security_advisory_ssa-864051.pdf (string)

}

5 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

url : http://www.us-cert.gov/control_systems/pdf/ICSA-12-256-01.pdf (string)

}

]

sourceIdentifier : ics-cert@hq.dhs.gov (string)

vulnStatus : Deferred (string)

weaknesses : [ »

0 : { »

description : [ »

0 : { »

lang : en (string)

value : CWE-352 (string)

}

]

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

Metrics

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

Affected Vendors & Products

Metrics

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object