CVE-2018-13804

Severity Score

8.1

*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

A vulnerability has been identified in SIMATIC IT LMS (All versions), SIMATIC IT Production Suite (Versions V7.1 < V7.1 Upd3), SIMATIC IT UA Discrete Manufacturing (Versions < V1.2), SIMATIC IT UA Discrete Manufacturing (Versions V1.2), SIMATIC IT UA Discrete Manufacturing (Versions V1.3), SIMATIC IT UA Discrete Manufacturing (Versions V2.3), SIMATIC IT UA Discrete Manufacturing (Versions V2.4). An attacker with network access to the installation could bypass the application-level authentication. In order to exploit the vulnerability, an attacker must obtain network access to an affected installation and must obtain a valid username to the system. Successful exploitation requires no user privileges and no user interaction. The vulnerability could allow an attacker to compromise confidentiality, integrity and availability of the system. At the time of advisory publication no public exploitation of this vulnerability was known.

Se ha identificado una vulnerabilidad en SIMATIC IT LMS (todas las versiones), SIMATIC IT Production Suite (versiones V7.1 anteriores a V7.1 Upd3), SIMATIC IT UA Discrete Manufacturing (versiones anteriores a V1.2), SIMATIC IT UA Discrete Manufacturing (versiones V1.2), SIMATIC IT UA Discrete Manufacturing (versiones V1.3), SIMATIC IT UA Discrete Manufacturing (versiones V2.3) y SIMATIC IT UA Discrete Manufacturing (versiones V2.4). Un atacante con acceso de red a la instalación podría omitir la autenticación a nivel de aplicación. Para explotar esta vulnerabilidad, un atacante debe obtener acceso de red a una instalación afectada y debe obtener un usuario válido en el sistema. Su explotación con éxito no requiere privilegios de usuario ni interacción. La vulnerabilidad podría permitir que un atacante comprometa la confidencialidad, integridad y disponibilidad del sistema. En el momento de la publicación del aviso, no se conoce ninguna explotación pública de la vulnerabilidad.

*Credits: N/A

Attack Vector

Network

Attack Complexity

High

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Attack Vector

Network

Attack Complexity

Medium

Authentication

None

Confidentiality

Complete

Integrity

Complete

Availability

Complete

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2018-07-10 CVE Reserved
2018-12-13 CVE Published
2024-05-05 EPSS Updated
2024-08-05 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-287: Improper Authentication

CAPEC

References (2)

URL	Tag	Source
http://www.securityfocus.com/bid/105924	Third Party Advisory

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC
https://cert-portal.siemens.com/productcert/pdf/ssa-886615.pdf	2019-10-09

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Siemens Search vendor "Siemens"		Simatic It Line Monitoring System Search vendor "Siemens" for product "Simatic It Line Monitoring System"				*		-		Affected
Siemens Search vendor "Siemens"		Simatic It Production Suite Search vendor "Siemens" for product "Simatic It Production Suite"				v7.1 Search vendor "Siemens" for product "Simatic It Production Suite" and version "v7.1"		-		Affected
Siemens Search vendor "Siemens"		Simatic It Ua Discrete Manufacturing Search vendor "Siemens" for product "Simatic It Ua Discrete Manufacturing"				<= v1.2 Search vendor "Siemens" for product "Simatic It Ua Discrete Manufacturing" and version " <= v1.2"		-		Affected
Siemens Search vendor "Siemens"		Simatic It Ua Discrete Manufacturing Search vendor "Siemens" for product "Simatic It Ua Discrete Manufacturing"				v1.3 Search vendor "Siemens" for product "Simatic It Ua Discrete Manufacturing" and version "v1.3"		-		Affected
Siemens Search vendor "Siemens"		Simatic It Ua Discrete Manufacturing Search vendor "Siemens" for product "Simatic It Ua Discrete Manufacturing"				v2.3 Search vendor "Siemens" for product "Simatic It Ua Discrete Manufacturing" and version "v2.3"		-		Affected
Siemens Search vendor "Siemens"		Simatic It Ua Discrete Manufacturing Search vendor "Siemens" for product "Simatic It Ua Discrete Manufacturing"				v2.4 Search vendor "Siemens" for product "Simatic It Ua Discrete Manufacturing" and version "v2.4"		-		Affected