Design/Logic Flaw

2022-07-1210:15:00

PRIOn knowledge base

www.prio-n.com

7.5 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

58.4%

JSON

A vulnerability has been identified in SIMATIC MV540 H (All versions < V3.3), SIMATIC MV540 S (All versions < V3.3), SIMATIC MV550 H (All versions < V3.3), SIMATIC MV550 S (All versions < V3.3), SIMATIC MV560 U (All versions < V3.3), SIMATIC MV560 X (All versions < V3.3). The web session management of affected devices does not invalidate session ids in certain logout scenarios. This could allow an authenticated remote attacker to hijack other users’ sessions.

CPENameOperatorVersion
simatic_mv540_h_firmwarelt3.3
simatic_mv540_s_firmwarelt3.3
simatic_mv550_h_firmwarelt3.3
simatic_mv550_s_firmwarelt3.3
simatic_mv560_u_firmwarelt3.3
simatic_mv560_x_firmwarelt3.3

Name	Operator	Version
simatic_mv540_h_firmware	lt	3.3
simatic_mv540_s_firmware	lt	3.3
simatic_mv550_h_firmware	lt	3.3
simatic_mv550_s_firmware	lt	3.3
simatic_mv560_u_firmware	lt	3.3
simatic_mv560_x_firmware	lt	3.3

References

cert-portal.siemens.com/productcert/pdf/ssa-348662.pdf