CVE-2015-1358 - Vulnerability Details - OpenCVE

ReportizFlow

The remote-management module in the (1) Multi Panels, (2) Comfort Panels, and (3) RT Advanced functionality in Siemens SIMATIC WinCC (TIA Portal) before 13 SP1 and in the (4) panels and (5) runtime functionality in SIMATIC WinCC flexible before 2008 SP3 Up7 does not properly encrypt credentials in transit, which makes it easier for remote attackers to determine cleartext credentials by sniffing the network and conducting a decryption attack.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

AV:N/AC:L/Au:N/C:P/I:N/A:N

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Siemens	Wincc

Configuration 1 [-]

cpe:2.3:a:siemens:wincc:13.0:*:*:*:*:*:*:*

No data.

References

Link	Providers
http://www.securityfocus.com/bid/72625
http://www.securitytracker.com/id/1036090
http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-526760.pdf
http://www.siemens.com/innovation/pool/de/forschungsfelder/siemens_security_advisory_ssa-543623.pdf
https://ics-cert.us-cert.gov/advisories/ICSA-16-161-02

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2015-02-18T02:00:00

Updated: 2024-08-06T04:40:18.560Z

Reserved: 2015-01-26T00:00:00

Link: CVE-2015-1358

Vulnrichment

No data.

NVD

Status : Modified

Published: 2015-02-18T02:59:07.813

Modified: 2024-11-21T02:25:14.990

Link: CVE-2015-1358

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2015-02-13T00:00:00", "descriptions": [{"lang": "en", "value": "The remote-management module in the (1) Multi Panels, (2) Comfort Panels, and (3) RT Advanced functionality in Siemens SIMATIC WinCC (TIA Portal) before 13 SP1 and in the (4) panels and (5) runtime functionality in SIMATIC WinCC flexible before 2008 SP3 Up7 does not properly encrypt credentials in transit, which makes it easier for remote attackers to determine cleartext credentials by sniffing the network and conducting a decryption attack."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2016-11-28T20:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "http://www.siemens.com/innovation/pool/de/forschungsfelder/siemens_security_advisory_ssa-543623.pdf"}, {"tags": ["x_refsource_MISC"], "url": "https://ics-cert.us-cert.gov/advisories/ICSA-16-161-02"}, {"name": "72625", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/72625"}, {"name": "1036090", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id/1036090"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-526760.pdf"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "[email protected]", "ID": "CVE-2015-1358", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The remote-management module in the (1) Multi Panels, (2) Comfort Panels, and (3) RT Advanced functionality in Siemens SIMATIC WinCC (TIA Portal) before 13 SP1 and in the (4) panels and (5) runtime functionality in SIMATIC WinCC flexible before 2008 SP3 Up7 does not properly encrypt credentials in transit, which makes it easier for remote attackers to determine cleartext credentials by sniffing the network and conducting a decryption attack."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "http://www.siemens.com/innovation/pool/de/forschungsfelder/siemens_security_advisory_ssa-543623.pdf", "refsource": "CONFIRM", "url": "http://www.siemens.com/innovation/pool/de/forschungsfelder/siemens_security_advisory_ssa-543623.pdf"}, {"name": "https://ics-cert.us-cert.gov/advisories/ICSA-16-161-02", "refsource": "MISC", "url": "https://ics-cert.us-cert.gov/advisories/ICSA-16-161-02"}, {"name": "72625", "refsource": "BID", "url": "http://www.securityfocus.com/bid/72625"}, {"name": "1036090", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id/1036090"}, {"name": "http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-526760.pdf", "refsource": "CONFIRM", "url": "http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-526760.pdf"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T04:40:18.560Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.siemens.com/innovation/pool/de/forschungsfelder/siemens_security_advisory_ssa-543623.pdf"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://ics-cert.us-cert.gov/advisories/ICSA-16-161-02"}, {"name": "72625", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/72625"}, {"name": "1036090", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://www.securitytracker.com/id/1036090"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-526760.pdf"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2015-1358", "datePublished": "2015-02-18T02:00:00", "dateReserved": "2015-01-26T00:00:00", "dateUpdated": "2024-08-06T04:40:18.560Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:siemens:wincc:13.0:*:*:*:*:*:*:*", "matchCriteriaId": "70794E93-2FF5-4585-BC14-D2BB1357F361", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "The remote-management module in the (1) Multi Panels, (2) Comfort Panels, and (3) RT Advanced functionality in Siemens SIMATIC WinCC (TIA Portal) before 13 SP1 and in the (4) panels and (5) runtime functionality in SIMATIC WinCC flexible before 2008 SP3 Up7 does not properly encrypt credentials in transit, which makes it easier for remote attackers to determine cleartext credentials by sniffing the network and conducting a decryption attack."}, {"lang": "es", "value": "El m\u00f3dulo de administraci\u00f3n remota en la funcionalidad (1) Multi Panels (2) Comfort Panels y (3) RT Advanced en Siemens SIMATIC WinCC (TIA Portal) en versiones anteriores a 13 SP1 y en la funcionalidad (4) panels y (5) runtime en SIMATIC WinCC flexible en versiones anteriores a 2008 SP3 Up7 no cifra correctamente las credenciales en tr\u00e1nsito, lo que hace que sea m\u00e1s f\u00e1cil a atacantes remotos determinar las credenciales en texto plano rastreando la red y llevando a cabo un ataque de descifrado."}], "id": "CVE-2015-1358", "lastModified": "2024-11-21T02:25:14.990", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "[email protected]", "type": "Primary", "userInteractionRequired": false}]}, "published": "2015-02-18T02:59:07.813", "references": [{"source": "[email protected]", "url": "http://www.securityfocus.com/bid/72625"}, {"source": "[email protected]", "url": "http://www.securitytracker.com/id/1036090"}, {"source": "[email protected]", "url": "http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-526760.pdf"}, {"source": "[email protected]", "tags": ["Vendor Advisory"], "url": "http://www.siemens.com/innovation/pool/de/forschungsfelder/siemens_security_advisory_ssa-543623.pdf"}, {"source": "[email protected]", "tags": ["US Government Resource"], "url": "https://ics-cert.us-cert.gov/advisories/ICSA-16-161-02"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/72625"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securitytracker.com/id/1036090"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-526760.pdf"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://www.siemens.com/innovation/pool/de/forschungsfelder/siemens_security_advisory_ssa-543623.pdf"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["US Government Resource"], "url": "https://ics-cert.us-cert.gov/advisories/ICSA-16-161-02"}], "sourceIdentifier": "[email protected]", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-310"}], "source": "[email protected]", "type": "Primary"}]}