CVE-2013-4651

Severity Score

7.4

*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

Siemens Scalance W7xx devices with firmware before 4.5.4 use the same hardcoded X.509 certificate across different customers' installations, which makes it easier for remote attackers to conduct man-in-the-middle attacks against SSL sessions by leveraging the certificate's trust relationship.

Los dispositivos Siemens Scalance W7xx con firmware anterior a 4.5.4 utiliza el certificado X.509 embebido (hardcoded) para distintas instalaciones, lo que facilita a atacantes remotos llevar a cabo ataques man-in-the-middle contra las sesiones SSL aprovechando las relaciones de confianza del certificado.

*Credits: N/A

Attack Vector

Network

Attack Complexity

High

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

None

Attack Vector

Network

Attack Complexity

High

Authentication

None

Confidentiality

Partial

Integrity

Partial

Availability

Complete

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2013-06-24 CVE Reserved
2013-07-31 CVE Published
2024-09-17 CVE Updated
2025-03-30 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-255: Credentials Management Errors

CAPEC

References (1)

URL	Tag	Source

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC
http://www.siemens.com/corporate-technology/pool/de/forschungsfelder/siemens_security_advisory_ssa-120908.pdf	2013-08-01

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Siemens Search vendor "Siemens"	Scalance W700 Series Firmware Search vendor "Siemens" for product "Scalance W700 Series Firmware"	<= 4.4.0 Search vendor "Siemens" for product "Scalance W700 Series Firmware" and version " <= 4.4.0"	-	Affected	in	Siemens Search vendor "Siemens"	Scalance W744-1 Search vendor "Siemens" for product "Scalance W744-1"	-	-	Affected
Siemens Search vendor "Siemens"	Scalance W700 Series Firmware Search vendor "Siemens" for product "Scalance W700 Series Firmware"	<= 4.4.0 Search vendor "Siemens" for product "Scalance W700 Series Firmware" and version " <= 4.4.0"	-	Affected	in	Siemens Search vendor "Siemens"	Scalance W744-1pro Search vendor "Siemens" for product "Scalance W744-1pro"	-	-	Affected
Siemens Search vendor "Siemens"	Scalance W700 Series Firmware Search vendor "Siemens" for product "Scalance W700 Series Firmware"	<= 4.4.0 Search vendor "Siemens" for product "Scalance W700 Series Firmware" and version " <= 4.4.0"	-	Affected	in	Siemens Search vendor "Siemens"	Scalance W746-1 Search vendor "Siemens" for product "Scalance W746-1"	-	-	Affected
Siemens Search vendor "Siemens"	Scalance W700 Series Firmware Search vendor "Siemens" for product "Scalance W700 Series Firmware"	<= 4.4.0 Search vendor "Siemens" for product "Scalance W700 Series Firmware" and version " <= 4.4.0"	-	Affected	in	Siemens Search vendor "Siemens"	Scalance W746-1pro Search vendor "Siemens" for product "Scalance W746-1pro"	-	-	Affected
Siemens Search vendor "Siemens"	Scalance W700 Series Firmware Search vendor "Siemens" for product "Scalance W700 Series Firmware"	<= 4.4.0 Search vendor "Siemens" for product "Scalance W700 Series Firmware" and version " <= 4.4.0"	-	Affected	in	Siemens Search vendor "Siemens"	Scalance W747-1 Search vendor "Siemens" for product "Scalance W747-1"	-	-	Affected
Siemens Search vendor "Siemens"	Scalance W700 Series Firmware Search vendor "Siemens" for product "Scalance W700 Series Firmware"	<= 4.4.0 Search vendor "Siemens" for product "Scalance W700 Series Firmware" and version " <= 4.4.0"	-	Affected	in	Siemens Search vendor "Siemens"	Scalance W747-1rr Search vendor "Siemens" for product "Scalance W747-1rr"	-	-	Affected
Siemens Search vendor "Siemens"	Scalance W700 Series Firmware Search vendor "Siemens" for product "Scalance W700 Series Firmware"	<= 4.4.0 Search vendor "Siemens" for product "Scalance W700 Series Firmware" and version " <= 4.4.0"	-	Affected	in	Siemens Search vendor "Siemens"	Scalance W784-1 Search vendor "Siemens" for product "Scalance W784-1"	-	-	Affected
Siemens Search vendor "Siemens"	Scalance W700 Series Firmware Search vendor "Siemens" for product "Scalance W700 Series Firmware"	<= 4.4.0 Search vendor "Siemens" for product "Scalance W700 Series Firmware" and version " <= 4.4.0"	-	Affected	in	Siemens Search vendor "Siemens"	Scalance W784-1rr Search vendor "Siemens" for product "Scalance W784-1rr"	-	-	Affected
Siemens Search vendor "Siemens"	Scalance W700 Series Firmware Search vendor "Siemens" for product "Scalance W700 Series Firmware"	<= 4.4.0 Search vendor "Siemens" for product "Scalance W700 Series Firmware" and version " <= 4.4.0"	-	Affected	in	Siemens Search vendor "Siemens"	Scalance W786-1pro Search vendor "Siemens" for product "Scalance W786-1pro"	-	-	Affected
Siemens Search vendor "Siemens"	Scalance W700 Series Firmware Search vendor "Siemens" for product "Scalance W700 Series Firmware"	<= 4.4.0 Search vendor "Siemens" for product "Scalance W700 Series Firmware" and version " <= 4.4.0"	-	Affected	in	Siemens Search vendor "Siemens"	Scalance W786-2pro Search vendor "Siemens" for product "Scalance W786-2pro"	-	-	Affected
Siemens Search vendor "Siemens"	Scalance W700 Series Firmware Search vendor "Siemens" for product "Scalance W700 Series Firmware"	<= 4.4.0 Search vendor "Siemens" for product "Scalance W700 Series Firmware" and version " <= 4.4.0"	-	Affected	in	Siemens Search vendor "Siemens"	Scalance W786-2rr Search vendor "Siemens" for product "Scalance W786-2rr"	-	-	Affected
Siemens Search vendor "Siemens"	Scalance W700 Series Firmware Search vendor "Siemens" for product "Scalance W700 Series Firmware"	<= 4.4.0 Search vendor "Siemens" for product "Scalance W700 Series Firmware" and version " <= 4.4.0"	-	Affected	in	Siemens Search vendor "Siemens"	Scalance W786-3pro Search vendor "Siemens" for product "Scalance W786-3pro"	-	-	Affected
Siemens Search vendor "Siemens"	Scalance W700 Series Firmware Search vendor "Siemens" for product "Scalance W700 Series Firmware"	<= 4.4.0 Search vendor "Siemens" for product "Scalance W700 Series Firmware" and version " <= 4.4.0"	-	Affected	in	Siemens Search vendor "Siemens"	Scalance W788-1pro Search vendor "Siemens" for product "Scalance W788-1pro"	-	-	Affected
Siemens Search vendor "Siemens"	Scalance W700 Series Firmware Search vendor "Siemens" for product "Scalance W700 Series Firmware"	<= 4.4.0 Search vendor "Siemens" for product "Scalance W700 Series Firmware" and version " <= 4.4.0"	-	Affected	in	Siemens Search vendor "Siemens"	Scalance W788-1rr Search vendor "Siemens" for product "Scalance W788-1rr"	-	-	Affected
Siemens Search vendor "Siemens"	Scalance W700 Series Firmware Search vendor "Siemens" for product "Scalance W700 Series Firmware"	<= 4.4.0 Search vendor "Siemens" for product "Scalance W700 Series Firmware" and version " <= 4.4.0"	-	Affected	in	Siemens Search vendor "Siemens"	Scalance W788-2pro Search vendor "Siemens" for product "Scalance W788-2pro"	-	-	Affected
Siemens Search vendor "Siemens"	Scalance W700 Series Firmware Search vendor "Siemens" for product "Scalance W700 Series Firmware"	<= 4.4.0 Search vendor "Siemens" for product "Scalance W700 Series Firmware" and version " <= 4.4.0"	-	Affected	in	Siemens Search vendor "Siemens"	Scalance W788-2rr Search vendor "Siemens" for product "Scalance W788-2rr"	-	-	Affected