CVE-2023-26293

EPSS 0.04%
Published 11.04.2023 10:15:18
Last modified 21.11.2024 07:51:04
Source productcert@siemens.com
Teams watchlist Login
Open Login

A vulnerability has been identified in Totally Integrated Automation Portal (TIA Portal) V15 (All versions), Totally Integrated Automation Portal (TIA Portal) V16 (All versions < V16 Update 7), Totally Integrated Automation Portal (TIA Portal) V17 (All versions < V17 Update 6), Totally Integrated Automation Portal (TIA Portal) V18 (All versions < V18 Update 1). Affected products contain a path traversal vulnerability that could allow the creation or overwrite of arbitrary files in the engineering system. If the user is tricked to open a malicious PC system configuration file, an attacker could exploit this vulnerability to achieve arbitrary code execution.

Affected products Warnungen 0 Metrics 3 CWE 2 References 5

Data is provided by the National Vulnerability Database (NVD)

Siemens ≫ Tia Portal Version15

Siemens ≫ Tia Portal Version16

Siemens ≫ Tia Portal Version17 Update-

Siemens ≫ Tia Portal Version17 Updateupdate1

Siemens ≫ Tia Portal Version17 Updateupdate2

Siemens ≫ Tia Portal Version17 Updateupdate3

Siemens ≫ Tia Portal Version17 Updateupdate4

Siemens ≫ Tia Portal Version17 Updateupdate5

Siemens ≫ Tia Portal Version18 Update-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.04%	0.125

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
productcert@siemens.com	7.3	1.8	5.5	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L
nvd@nist.gov	7.8	1.8	5.9	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

https://cert-portal.siemens.com/productcert/html/ssa-116924.html

https://cert-portal.siemens.com/productcert/pdf/ssa-116924.pdf

Patch

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2023-26293

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-26293

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-26293

EUVD