CVE-2023-30757
 
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
A vulnerability has been identified in Totally Integrated Automation Portal (TIA Portal) V14 (All versions), Totally Integrated Automation Portal (TIA Portal) V15 (All versions), Totally Integrated Automation Portal (TIA Portal) V15.1 (All versions), Totally Integrated Automation Portal (TIA Portal) V16 (All versions), Totally Integrated Automation Portal (TIA Portal) V17 (All versions), Totally Integrated Automation Portal (TIA Portal) V18 (All versions), Totally Integrated Automation Portal (TIA Portal) V19 (All versions). The know-how protection feature in affected products does not properly update the encryption of existing program blocks when a project file is updated.
This could allow attackers with access to the project file to recover previous - yet unprotected - versions of the project without the knowledge of the know-how protection password.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2023-04-14 CVE Reserved
- 2023-06-13 CVE Published
- 2023-06-14 EPSS Updated
- 2024-08-02 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-693: Protection Mechanism Failure
CAPEC
References (1)
URL | Tag | Source |
---|
URL | Date | SRC |
---|
URL | Date | SRC |
---|
URL | Date | SRC |
---|---|---|
https://cert-portal.siemens.com/productcert/pdf/ssa-042050.pdf | 2023-12-12 |
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Siemens Search vendor "Siemens" | Totally Integrated Automation Portal Search vendor "Siemens" for product "Totally Integrated Automation Portal" | 14.0 Search vendor "Siemens" for product "Totally Integrated Automation Portal" and version "14.0" | - |
Affected
| ||||||
Siemens Search vendor "Siemens" | Totally Integrated Automation Portal Search vendor "Siemens" for product "Totally Integrated Automation Portal" | 15 Search vendor "Siemens" for product "Totally Integrated Automation Portal" and version "15" | - |
Affected
| ||||||
Siemens Search vendor "Siemens" | Totally Integrated Automation Portal Search vendor "Siemens" for product "Totally Integrated Automation Portal" | 15.1 Search vendor "Siemens" for product "Totally Integrated Automation Portal" and version "15.1" | - |
Affected
| ||||||
Siemens Search vendor "Siemens" | Totally Integrated Automation Portal Search vendor "Siemens" for product "Totally Integrated Automation Portal" | 16 Search vendor "Siemens" for product "Totally Integrated Automation Portal" and version "16" | - |
Affected
| ||||||
Siemens Search vendor "Siemens" | Totally Integrated Automation Portal Search vendor "Siemens" for product "Totally Integrated Automation Portal" | 17 Search vendor "Siemens" for product "Totally Integrated Automation Portal" and version "17" | - |
Affected
| ||||||
Siemens Search vendor "Siemens" | Totally Integrated Automation Portal Search vendor "Siemens" for product "Totally Integrated Automation Portal" | 18 Search vendor "Siemens" for product "Totally Integrated Automation Portal" and version "18" | - |
Affected
|