Description

A vulnerability has been identified in Cerberus DMS (All versions), Desigo CC (All versions), Desigo CC Compact (All versions), SIMATIC WinCC OA V3.16 (All versions in default configuration), SIMATIC WinCC OA V3.17 (All versions in non-default configuration), SIMATIC WinCC OA V3.18 (All versions in non-default configuration). Affected applications use client-side only authentication, when neither server-side authentication (SSA) nor Kerberos authentication is enabled. In this configuration, attackers could impersonate other users or exploit the client-server protocol without being authenticated.

Related CPE's

a

siemens

cerberus_dms

Vulnerable

a

siemens

desigo_cc

Vulnerable

a

siemens

desigo_cc_compact

Vulnerable

a

siemens

wincc_open_architecture

3

References

https://cert-portal.siemens.com/productcert/pdf/ssa-111512.pdf

Vendor Advisory

https://cert-portal.siemens.com/productcert/pdf/ssa-836027.pdf

Vendor Advisory

Weaknesses

[email protected]

Primary
CWE-603

[email protected]

Secondary
CWE-287

CVSS impact metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.8 · Critical

  • CVSS V3.1

  • CVSS V3.0

  • CVSS V2.0

Information

Source identifier

[email protected]

Vulnerability status

Analyzed

Published

2022-06-21T13:15:08.537

3 years ago

Last modified

2024-02-13T17:21:45.563

1 year ago