CVE-2019-6584

Severity Score

8.8

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

A vulnerability has been identified in SIEMENS LOGO!8 (6ED1052-xyyxx-0BA8 FS:01 to FS:06 / Firmware version V1.80.xx and V1.81.xx), SIEMENS LOGO!8 (6ED1052-xyy08-0BA0 FS:01 / Firmware version < V1.82.02). The integrated webserver does not invalidate the Session ID upon user logout. An attacker that successfully extracted a valid Session ID is able to use it even after the user logs out. The security vulnerability could be exploited by an attacker in a privileged network position who is able to read the communication between the affected device and the user or by an attacker who is able to obtain valid Session IDs through other means. The user must invoke a session to the affected device. At the time of advisory publication no public exploitation of this security vulnerability was known.

Una vulnerabilidad ha sido identificada en LOGO! 8 de SIEMENS (6ED1052-xyyxx-0BA8 FS:01 a FS:06 / versión de firmware V1.80.xx y V1.81.xx), SIEMENS LOGO! 8 (6ED1052-xyy08-0BA0 FS:01 / Versión de firmware < V1.82.02). El servidor web integrado no invalida el ID de sesión durante el cierre de sesión del usuario. Un atacante que haya extraído con éxito un ID de sesión válido puede usarlo incluso luego de que el usuario cierre la sesión. La vulnerabilidad de la seguridad puede ser explotada por un atacante en una posición de red privilegiada que puede leer la comunicación entre el dispositivo afectado y el usuario o por un atacante que puede obtener una ID de sesión válida mediante otros medios. El usuario necesita invocar una sesión al dispositivo afectado. En el momento de la publicación de asesoramiento, no se conocía la explotación pública de esta vulnerabilidad de seguridad.

*Credits: N/A

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

Required

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Attack Vector

Network

Attack Complexity

Medium

Authentication

None

Confidentiality

Partial

Integrity

Partial

Availability

Partial

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2019-01-22 CVE Reserved
2019-06-12 CVE Published
2023-03-07 EPSS Updated
2024-08-04 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-384: Session Fixation
CWE-613: Insufficient Session Expiration

CAPEC

References (1)

URL	Tag	Source

URL	Date	SRC

URL	Date	SRC
https://cert-portal.siemens.com/productcert/pdf/ssa-774850.pdf	2020-09-29

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Siemens Search vendor "Siemens"	Logo\!8 Firmware Search vendor "Siemens" for product "Logo\!8 Firmware"	>= 1.80.00 <= 1.81.00 Search vendor "Siemens" for product "Logo\!8 Firmware" and version " >= 1.80.00 <= 1.81.00"	-	Affected	in	Siemens Search vendor "Siemens"	Logo\!8 Search vendor "Siemens" for product "Logo\!8"	-	-	Safe
Siemens Search vendor "Siemens"	Logo\!8 Firmware Search vendor "Siemens" for product "Logo\!8 Firmware"	< 1.82.00 Search vendor "Siemens" for product "Logo\!8 Firmware" and version " < 1.82.00"	-	Affected	in	Siemens Search vendor "Siemens"	Logo\!8 Search vendor "Siemens" for product "Logo\!8"	-	-	Safe