Lucene search

[email protected]CVE-2022-33138

HistoryJul 12, 2022 - 10:15 a.m.

CVE-2022-33138

2022-07-1210:15:10

CWE-306

[email protected]

web.nvd.nist.gov

409

cve-2022-33138

simatic mv540

simatic mv550

simatic mv560

vulnerability

unauthenticated access

web api

data exfiltration

nvd

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

7.5 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

59.7%

JSON

A vulnerability has been identified in SIMATIC MV540 H (All versions < V3.3), SIMATIC MV540 S (All versions < V3.3), SIMATIC MV550 H (All versions < V3.3), SIMATIC MV550 S (All versions < V3.3), SIMATIC MV560 U (All versions < V3.3), SIMATIC MV560 X (All versions < V3.3). Affected devices do not perform authentication for several web API endpoints. This could allow an unauthenticated remote attacker to read and download data from the device.

Affected configurations

NVD

Node

siemenssimatic_mv540_h_firmwareRange<3.3

AND

siemenssimatic_mv540_hMatch-

Node

siemenssimatic_mv540_s_firmwareRange<3.3

AND

siemenssimatic_mv540_sMatch-

Node

siemenssimatic_mv550_h_firmwareRange<3.3

AND

siemenssimatic_mv550_hMatch-

Node

siemenssimatic_mv550_s_firmwareRange<3.3

AND

siemenssimatic_mv550_sMatch-

Node

siemenssimatic_mv560_u_firmwareRange<3.3

AND

siemenssimatic_mv560_uMatch-

Node

siemenssimatic_mv560_x_firmwareRange<3.3

AND

siemenssimatic_mv560_xMatch-

CPENameOperatorVersion
siemens:simatic_mv540_h_firmwaresiemens simatic mv540 h firmwarelt3.3

CPE	Name	Operator	Version
siemens:simatic_mv540_h_firmware	siemens simatic mv540 h firmware	lt	3.3

CNA Affected

[
  {
    "product": "SIMATIC MV540 H",
    "vendor": "Siemens",
    "versions": [
      {
        "status": "affected",
        "version": "All versions < V3.3"
      }
    ]
  },
  {
    "product": "SIMATIC MV540 S",
    "vendor": "Siemens",
    "versions": [
      {
        "status": "affected",
        "version": "All versions < V3.3"
      }
    ]
  },
  {
    "product": "SIMATIC MV550 H",
    "vendor": "Siemens",
    "versions": [
      {
        "status": "affected",
        "version": "All versions < V3.3"
      }
    ]
  },
  {
    "product": "SIMATIC MV550 S",
    "vendor": "Siemens",
    "versions": [
      {
        "status": "affected",
        "version": "All versions < V3.3"
      }
    ]
  },
  {
    "product": "SIMATIC MV560 U",
    "vendor": "Siemens",
    "versions": [
      {
        "status": "affected",
        "version": "All versions < V3.3"
      }
    ]
  },
  {
    "product": "SIMATIC MV560 X",
    "vendor": "Siemens",
    "versions": [
      {
        "status": "affected",
        "version": "All versions < V3.3"
      }
    ]
  }
]

References

cert-portal.siemens.com/productcert/pdf/ssa-348662.pdf

Social References

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

7.5 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

59.7%

JSON

Related for CVE-2022-33138

prion1 cvelist1 nvd1 ics1