cvelistv5 - cve-2019-18336

CVE-2019-18336 (GCVE-0-2019-18336)

Vulnerability from cvelistv5

Published

2020-03-10 19:16

Modified

2024-08-05 01:54

Severity ?

CWE

CWE-400 - Uncontrolled Resource Consumption

Summary

A vulnerability has been identified in SIMATIC S7-300 CPU family (incl. related ET200 CPUs and SIPLUS variants) (All versions < V3.X.17), SIMATIC TDC CP51M1 (All versions < V1.1.8), SIMATIC TDC CPU555 (All versions < V1.1.1), SINUMERIK 840D sl (All versions < V4.8.6), SINUMERIK 840D sl (All versions < V4.94). Specially crafted packets sent to port 102/tcp (Profinet) could cause the affected device to go into defect mode. A restart is required in order to recover the system. Successful exploitation requires an attacker to have network access to port 102/tcp, with no authentication. No user interation is required. At the time of advisory publication no public exploitation of this security vulnerability was known.

References

URL

Tags

https://cert-portal.siemens.com/productcert/pdf/ssa-508982.pdf

x_refsource_MISC

Impacted products

Vendor

Product

Version

Siemens AG

SIMATIC S7-300 CPU family (incl. related ET200 CPUs and SIPLUS variants)

Version: All versions < V3.X.17

Siemens AG	SIMATIC TDC CP51M1	Version: All versions < V1.1.8
Siemens AG	SIMATIC TDC CPU555	Version: All versions < V1.1.1
Siemens AG	SINUMERIK 840D sl	Version: All versions < V4.8.6
Siemens AG	SINUMERIK 840D sl	Version: All versions < V4.94

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T01:54:14.382Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-508982.pdf"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "SIMATIC S7-300 CPU family (incl. related ET200 CPUs and SIPLUS variants)",
          "vendor": "Siemens AG",
          "versions": [
            {
              "status": "affected",
              "version": "All versions \u003c V3.X.17"
            }
          ]
        },
        {
          "product": "SIMATIC TDC CP51M1",
          "vendor": "Siemens AG",
          "versions": [
            {
              "status": "affected",
              "version": "All versions \u003c V1.1.8"
            }
          ]
        },
        {
          "product": "SIMATIC TDC CPU555",
          "vendor": "Siemens AG",
          "versions": [
            {
              "status": "affected",
              "version": "All versions \u003c V1.1.1"
            }
          ]
        },
        {
          "product": "SINUMERIK 840D sl",
          "vendor": "Siemens AG",
          "versions": [
            {
              "status": "affected",
              "version": "All versions \u003c V4.8.6"
            }
          ]
        },
        {
          "product": "SINUMERIK 840D sl",
          "vendor": "Siemens AG",
          "versions": [
            {
              "status": "affected",
              "version": "All versions \u003c V4.94"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A vulnerability has been identified in SIMATIC S7-300 CPU family (incl. related ET200 CPUs and SIPLUS variants) (All versions \u003c V3.X.17), SIMATIC TDC CP51M1 (All versions \u003c V1.1.8), SIMATIC TDC CPU555 (All versions \u003c V1.1.1), SINUMERIK 840D sl (All versions \u003c V4.8.6), SINUMERIK 840D sl (All versions \u003c V4.94). Specially crafted packets sent to port 102/tcp (Profinet) could cause the affected device to go into defect mode. A restart is required in order to recover the system. Successful exploitation requires an attacker to have network access to port 102/tcp, with no authentication. No user interation is required. At the time of advisory publication no public exploitation of this security vulnerability was known."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-400",
              "description": "CWE-400: Uncontrolled Resource Consumption",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2020-07-14T13:18:04.000Z",
        "orgId": "cec7a2ec-15b4-4faf-bd53-b40f371f3a77",
        "shortName": "siemens"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-508982.pdf"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "productcert@siemens.com",
          "ID": "CVE-2019-18336",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "SIMATIC S7-300 CPU family (incl. related ET200 CPUs and SIPLUS variants)",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "All versions \u003c V3.X.17"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "SIMATIC TDC CP51M1",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "All versions \u003c V1.1.8"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "SIMATIC TDC CPU555",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "All versions \u003c V1.1.1"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "SINUMERIK 840D sl",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "All versions \u003c V4.8.6"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "SINUMERIK 840D sl",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "All versions \u003c V4.94"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Siemens AG"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A vulnerability has been identified in SIMATIC S7-300 CPU family (incl. related ET200 CPUs and SIPLUS variants) (All versions \u003c V3.X.17), SIMATIC TDC CP51M1 (All versions \u003c V1.1.8), SIMATIC TDC CPU555 (All versions \u003c V1.1.1), SINUMERIK 840D sl (All versions \u003c V4.8.6), SINUMERIK 840D sl (All versions \u003c V4.94). Specially crafted packets sent to port 102/tcp (Profinet) could cause the affected device to go into defect mode. A restart is required in order to recover the system. Successful exploitation requires an attacker to have network access to port 102/tcp, with no authentication. No user interation is required. At the time of advisory publication no public exploitation of this security vulnerability was known."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-400: Uncontrolled Resource Consumption"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://cert-portal.siemens.com/productcert/pdf/ssa-508982.pdf",
              "refsource": "MISC",
              "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-508982.pdf"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "cec7a2ec-15b4-4faf-bd53-b40f371f3a77",
    "assignerShortName": "siemens",
    "cveId": "CVE-2019-18336",
    "datePublished": "2020-03-10T19:16:17.000Z",
    "dateReserved": "2019-10-23T00:00:00.000Z",
    "dateUpdated": "2024-08-05T01:54:14.382Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CERTFR-2020-AVI-132

Vulnerability from certfr_avis

De multiples vulnérabilités ont été découvertes dans les produits Siemens. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et un contournement de la politique de sécurité.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
Siemens	N/A	SiNVR 3 Central Control Server (CCS)
Siemens	N/A	SINUMERIK 840D
Siemens	N/A	Spectrum Power 5 versions antérieures à v5.50 HF02
Siemens	N/A	SiNVR 3 Video Server
Siemens	N/A	SIMATIC S7-300 versions antérieures à V3.X.17

References

Title

Publication Time

Tags

Bulletin de sécurité SIemens ssa-508982 du 10 mars 2020	None	vendor-advisory
Bulletin de sécurité SIemens ssa-844761 du 10 mars 2020	None	vendor-advisory
Bulletin de sécurité SIemens ssa-938930 du 10 mars 2020	None	vendor-advisory
Bulletin de sécurité Siemens ssa-508982 du 10 mars 2020	-	other
Bulletin de sécurité Siemens ssa-844761 du 10 mars 2020	-	other
Bulletin de sécurité Siemens ssa-938930 du 10 mars 2020	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "SiNVR 3 Central Control Server (CCS)",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SINUMERIK 840D",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Spectrum Power 5 versions ant\u00e9rieures \u00e0 v5.50 HF02",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SiNVR 3 Video Server",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC S7-300 versions ant\u00e9rieures \u00e0 V3.X.17",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2019-19290",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-19290"
    },
    {
      "name": "CVE-2019-18336",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-18336"
    },
    {
      "name": "CVE-2020-7579",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-7579"
    },
    {
      "name": "CVE-2019-19292",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-19292"
    },
    {
      "name": "CVE-2019-19299",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-19299"
    },
    {
      "name": "CVE-2019-19295",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-19295"
    },
    {
      "name": "CVE-2019-19294",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-19294"
    },
    {
      "name": "CVE-2019-19298",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-19298"
    },
    {
      "name": "CVE-2019-19291",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-19291"
    },
    {
      "name": "CVE-2019-19293",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-19293"
    },
    {
      "name": "CVE-2019-19297",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-19297"
    },
    {
      "name": "CVE-2019-19296",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-19296"
    }
  ],
  "initial_release_date": "2020-03-10T00:00:00",
  "last_revision_date": "2020-03-10T00:00:00",
  "links": [
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-508982 du 10 mars 2020",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-508982.pdf"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-844761 du 10 mars 2020",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-844761.pdf"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-938930 du 10 mars 2020",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-938930.pdf"
    }
  ],
  "reference": "CERTFR-2020-AVI-132",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2020-03-10T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Injection de code indirecte \u00e0 distance (XSS)"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits\nSiemens. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer\nune ex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de service \u00e0\ndistance et un contournement de la politique de s\u00e9curit\u00e9.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Siemens",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 SIemens ssa-508982 du 10 mars 2020",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 SIemens ssa-844761 du 10 mars 2020",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 SIemens ssa-938930 du 10 mars 2020",
      "url": null
    }
  ]
}

CERTFR-2020-AVI-439

Vulnerability from certfr_avis

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
Siemens	N/A	LOGO! 8 BM (incl. variantes SIPLUS) versions antérieures à V1.82.04
Siemens	N/A	SIMATIC S7-300 CPU (incl. variantes ET200CPUs et SIPLUS) versions antérieures à V3.X.17
Siemens	N/A	SIMATIC TDC CP51M1 versions antérieures à V1.1.8
Siemens	N/A	SICAM T versions antérieures à V2.18
Siemens	N/A	Opcenter Execution Process versions antérieures à v3.2
Siemens	N/A	SICAM MMU versions antérieures à V2.05
Siemens	N/A	Camstar Enterprise Platform : une migration vers Opcenter Execution Core 8.2 est requise
Siemens	N/A	SIMATIC IT LMS, Production Suite, Notifier Server for Windows, PCS neo
Siemens	N/A	SICAM SGU
Siemens	N/A	LOGO! 8 BM (incl. variantes SIPLUS) versions antérieures à V1.82.03
Siemens	N/A	Opcenter RD&L versions antérieures à 8.1
Siemens	N/A	SIMATIC WinCC Runtime Advanced
Siemens	N/A	SPPA-T3000 APC UPS avec carte NMC AP9630 ou AP9631
Siemens	N/A	SIMATIC STEP 7 (TIA Portal) v16 versions antérieures à V16 update 2
Siemens	N/A	SPPA-T3000 Application Server et Terminal Server
Siemens	N/A	SIMATIC TDC CPU555 versions antérieures à V1.1.1
Siemens	N/A	Opcenter Execution Discrete versions antérieures à v3.2
Siemens	N/A	Opcenter Execution Core versions antérieures à v8.2
Siemens	N/A	SIMATIC S7-200 SMART CPU versions antérieures à V2.5.1
Siemens	N/A	Opcenter Quality versions antérieures à 11.3
Siemens	N/A	Opcenter Intelligence
Siemens	N/A	LOGO! 8 BM (incl. variantes SIPLUS) versions antérieures à V1.81.04
Siemens	N/A	SIMATIC HMI Basic Panels première et seconde génération, Comfort Panels, Mobile Panels de seconde génération (incl. variantes SIPLUS)
Siemens	N/A	SIMATIC STEP 7 (TIA Portal) v15
Siemens	N/A	SINUMERIK 840D sl versions antérieures à V4.8.6
Siemens	N/A	SIMATIC HMI KTP700F Mobile Arctic
Siemens	N/A	Opcenter Execution Foundation versions antérieures à v3.2
Siemens	N/A	SIMOCODE ES et Soft Starter ES
Siemens	N/A	SINUMERIK 840D sl versions antérieures à V4.94

References

Title

Publication Time

Tags

Bulletin de sécurité Siemens SSA-589181 du 14 juillet 2020	None	vendor-advisory
Bulletin de sécurité Siemens SSA-631949 du 14 juillet 2020	None	vendor-advisory
Bulletin de sécurité Siemens SSA-573753 du 14 juillet 2020	None	vendor-advisory
Bulletin de sécurité Siemens SSA-604937 du 14 juillet 2020	None	vendor-advisory
Bulletin de sécurité Siemens SSA-508982 du 10 mars 2020, mis à jour le 14 juillet 2020	None	vendor-advisory
Bulletin de sécurité Siemens SSA-841348 du 14 juillet 2020	None	vendor-advisory
Bulletin de sécurité Siemens SSA-364335 du 14 juillet 2020	None	vendor-advisory
Bulletin de sécurité Siemens SSA-305120 du 14 juillet 2020	None	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "LOGO! 8 BM (incl. variantes SIPLUS) versions ant\u00e9rieures \u00e0 V1.82.04",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC S7-300 CPU (incl. variantes ET200CPUs et SIPLUS) versions ant\u00e9rieures \u00e0 V3.X.17",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC TDC CP51M1 versions ant\u00e9rieures \u00e0 V1.1.8",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SICAM T versions ant\u00e9rieures \u00e0 V2.18",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Opcenter Execution Process versions ant\u00e9rieures \u00e0 v3.2",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SICAM MMU versions ant\u00e9rieures \u00e0 V2.05",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Camstar Enterprise Platform : une migration vers Opcenter Execution Core 8.2 est requise",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC IT LMS, Production Suite, Notifier Server for Windows, PCS neo",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SICAM SGU",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "LOGO! 8 BM (incl. variantes SIPLUS) versions ant\u00e9rieures \u00e0 V1.82.03",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Opcenter RD\u0026L versions ant\u00e9rieures \u00e0 8.1",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC WinCC Runtime Advanced",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SPPA-T3000 APC UPS avec carte NMC AP9630 ou AP9631",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC STEP 7 (TIA Portal) v16 versions ant\u00e9rieures \u00e0 V16 update 2",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SPPA-T3000 Application Server et Terminal Server",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC TDC CPU555 versions ant\u00e9rieures \u00e0 V1.1.1",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Opcenter Execution Discrete versions ant\u00e9rieures \u00e0 v3.2",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Opcenter Execution Core versions ant\u00e9rieures \u00e0 v8.2",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC S7-200 SMART CPU versions ant\u00e9rieures \u00e0 V2.5.1",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Opcenter Quality versions ant\u00e9rieures \u00e0 11.3",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Opcenter Intelligence",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "LOGO! 8 BM (incl. variantes SIPLUS) versions ant\u00e9rieures \u00e0 V1.81.04",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC HMI Basic Panels premi\u00e8re et seconde g\u00e9n\u00e9ration, Comfort Panels, Mobile Panels de seconde g\u00e9n\u00e9ration (incl. variantes SIPLUS)",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC STEP 7 (TIA Portal) v15",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SINUMERIK 840D sl versions ant\u00e9rieures \u00e0 V4.8.6",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC HMI KTP700F Mobile Arctic",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Opcenter Execution Foundation versions ant\u00e9rieures \u00e0 v3.2",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMOCODE ES et Soft Starter ES",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SINUMERIK 840D sl versions ant\u00e9rieures \u00e0 V4.94",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2020-7584",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-7584"
    },
    {
      "name": "CVE-2020-7577",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-7577"
    },
    {
      "name": "CVE-2020-7587",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-7587"
    },
    {
      "name": "CVE-2020-7576",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-7576"
    },
    {
      "name": "CVE-2019-18336",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-18336"
    },
    {
      "name": "CVE-2020-10042",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-10042"
    },
    {
      "name": "CVE-2020-7592",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-7592"
    },
    {
      "name": "CVE-2020-10043",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-10043"
    },
    {
      "name": "CVE-2020-10045",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-10045"
    },
    {
      "name": "CVE-2020-7578",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-7578"
    },
    {
      "name": "CVE-2020-7588",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-7588"
    },
    {
      "name": "CVE-2020-10044",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-10044"
    },
    {
      "name": "CVE-2020-10041",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-10041"
    },
    {
      "name": "CVE-2020-7581",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-7581"
    },
    {
      "name": "CVE-2020-10039",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-10039"
    },
    {
      "name": "CVE-2020-10038",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-10038"
    },
    {
      "name": "CVE-2020-10040",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-10040"
    },
    {
      "name": "CVE-2020-11896",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11896"
    },
    {
      "name": "CVE-2020-7593",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-7593"
    },
    {
      "name": "CVE-2020-10037",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-10037"
    },
    {
      "name": "CVE-2020-0545",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-0545"
    }
  ],
  "initial_release_date": "2020-07-15T00:00:00",
  "last_revision_date": "2020-07-15T00:00:00",
  "links": [],
  "reference": "CERTFR-2020-AVI-439",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2020-07-15T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Injection de code indirecte \u00e0 distance (XSS)"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits\nSiemens. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer\nune ex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de service \u00e0\ndistance et une \u00e9l\u00e9vation de privil\u00e8ges.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Siemens",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens SSA-589181 du 14 juillet 2020",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-589181.pdf"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens SSA-631949 du 14 juillet 2020",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-631949.pdf"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens SSA-573753 du 14 juillet 2020",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-573753.pdf"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens SSA-604937 du 14 juillet 2020",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-604937.pdf"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens SSA-508982 du 10 mars 2020, mis \u00e0 jour le 14 juillet 2020",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-508982.pdf"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens SSA-841348 du 14 juillet 2020",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-841348.pdf"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens SSA-364335 du 14 juillet 2020",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-364335.pdf"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens SSA-305120 du 14 juillet 2020",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-305120.pdf"
    }
  ]
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

CVE-2019-18336 (GCVE-0-2019-18336)

Vulnerability from cvelistv5

CERTFR-2020-AVI-132

Vulnerability from certfr_avis

Solution

CERTFR-2020-AVI-439

Vulnerability from certfr_avis

Solution

Tags

Sightings

Nomenclature