Lucene search

SiemensCVE-2020-10048

HistoryFeb 09, 2021 - 5:15 p.m.

CVE-2020-10048

2021-02-0917:15:13

CWE-287

CWE-288

siemens

web.nvd.nist.gov

cve

2020

10048

simatic pcs 7

wincc

security vulnerability

password bypass

authentication circumvention

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

AI Score

5.4

Confidence

High

EPSS

Percentile

12.6%

JSON

A vulnerability has been identified in SIMATIC PCS 7 (All versions), SIMATIC WinCC (All versions < V7.5 SP2). Due to an insecure password verification process, an attacker could bypass the password protection set on protected files, thus being granted access to the protected content, circumventing authentication.

Affected configurations

Nvd

Node

siemenssimatic_pcs_7

siemenssimatic_winccRange<7.5

siemenssimatic_winccMatch7.5sp1

siemenssimatic_winccMatch7.5sp1_update1

siemenssimatic_winccMatch7.5sp1_update2

VendorProductVersionCPE
siemenssimatic_pcs_7*cpe:2.3:a:siemens:simatic_pcs_7:*:*:*:*:*:*:*:*
siemenssimatic_wincc*cpe:2.3:a:siemens:simatic_wincc:*:*:*:*:*:*:*:*
siemenssimatic_wincc7.5cpe:2.3:a:siemens:simatic_wincc:7.5:sp1:*:*:*:*:*:*
siemenssimatic_wincc7.5cpe:2.3:a:siemens:simatic_wincc:7.5:sp1_update1:*:*:*:*:*:*
siemenssimatic_wincc7.5cpe:2.3:a:siemens:simatic_wincc:7.5:sp1_update2:*:*:*:*:*:*

Vendor	Product	Version	CPE
siemens	simatic_pcs_7	*	cpe:2.3:a:siemens:simatic_pcs_7::::::::
siemens	simatic_wincc	*	cpe:2.3:a:siemens:simatic_wincc::::::::
siemens	simatic_wincc	7.5	cpe:2.3:a:siemens:simatic_wincc:7.5:sp1::::::
siemens	simatic_wincc	7.5	cpe:2.3:a:siemens:simatic_wincc:7.5:sp1_update1::::::
siemens	simatic_wincc	7.5	cpe:2.3:a:siemens:simatic_wincc:7.5:sp1_update2::::::

CNA Affected

[
  {
    "product": "SIMATIC PCS 7",
    "vendor": "Siemens",
    "versions": [
      {
        "status": "affected",
        "version": "All versions"
      }
    ]
  },
  {
    "product": "SIMATIC WinCC",
    "vendor": "Siemens",
    "versions": [
      {
        "status": "affected",
        "version": "All versions < V7.5 SP2"
      }
    ]
  }
]

References

cert-portal.siemens.com/productcert/pdf/ssa-944678.pdf

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

AI Score

5.4

Confidence

High

EPSS

Percentile

12.6%

JSON

Related for CVE-2020-10048