7.5
CVE-2018-13812
- EPSS 7.9%
- Published 13.12.2018 16:29:00
- Last modified 21.11.2024 03:48:07
- Source productcert@siemens.com
- Teams watchlist Login
- Open Login
A vulnerability has been identified in SIMATIC HMI Comfort Panels 4" - 22" (All versions < V15 Update 4), SIMATIC HMI Comfort Outdoor Panels 7" & 15" (All versions < V15 Update 4), SIMATIC HMI KTP Mobile Panels KTP400F, KTP700, KTP700F, KTP900 and KTP900F (All versions < V15 Update 4), SIMATIC WinCC Runtime Advanced (All versions < V15 Update 4), SIMATIC WinCC Runtime Professional (All versions < V15 Update 4), SIMATIC WinCC (TIA Portal) (All versions < V15 Update 4), SIMATIC HMI Classic Devices (TP/MP/OP/MP Mobile Panel) (All versions). A directory traversal vulnerability could allow to download arbitrary files from the device. The security vulnerability could be exploited by an attacker with network access to the integrated web server. No user interaction and no authentication is required to exploit the vulnerability. The vulnerability impacts the confidentiality of the device. At the time of advisory publication no public exploitation of this security vulnerability was known.
Data is provided by the National Vulnerability Database (NVD)
Siemens ≫ Simatic Hmi Comfort Panels Firmware Version <= 15.0
Siemens ≫ Simatic Hmi Comfort Outdoor Panels Firmware Version <= 15.0
Siemens ≫ Simatic Hmi Ktp Mobile Panels Ktp400f Firmware Version <= 15.0
Siemens ≫ Simatic Hmi Ktp Mobile Panels Ktp700 Firmware Version <= 15.0
Siemens ≫ Simatic Hmi Ktp Mobile Panels Ktp700f Firmware Version <= 15.0
Siemens ≫ Simatic Hmi Ktp Mobile Panels Ktp900 Firmware Version <= 15.0
Siemens ≫ Simatic Hmi Ktp Mobile Panels Ktp900f Firmware Version <= 15.0
Siemens ≫ Simatic Wincc (tia Portal) Version <= 15.0
Siemens ≫ Simatic Wincc Runtime SwEditionadvanced Version <= 15.0
Siemens ≫ Simatic Wincc Runtime SwEditionprofessional Version <= 15.0
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 7.9% | 0.916 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 3.9 | 3.6 |
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:P/I:N/A:N
|
CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.