Details of VAR-201607-0460

ID

VAR-201607-0460

CVE

CVE-2016-5848

TITLE

Siemens SICAM PAS Information Disclosure Vulnerability

Trust: 0.8

sources: IVD: 9c543322-8898-11e7-a432-000c2975a0fc // CNVD: CNVD-2016-04435

DESCRIPTION

Siemens SICAM PAS before 8.07 does not properly restrict password data in the database, which makes it easier for local users to calculate passwords by leveraging unspecified database privileges. SICAM PAS is an energy automation solution for substation equipment operation. It has an open communication interface to meet the control requirements of power system control and industrial power supply equipment. An information disclosure vulnerability exists in Siemens SICAM PAS. By authentication, an attacker with the SICAM PAS database privilege can recreate the SICAM PAS user password. Siemens SICAM PAS is prone to multiple local information-disclosure vulnerabilities Local attackers can exploit these issues to obtain sensitive information that may aid in further attacks

Trust: 2.7

sources: NVD: CVE-2016-5848 // JVNDB: JVNDB-2016-003484 // CNVD: CNVD-2016-04435 // BID: 91525 // IVD: 9c543322-8898-11e7-a432-000c2975a0fc // VULHUB: VHN-94668

IOT TAXONOMY

category:

['ICS']

sub_category:

Trust: 0.8

sources: IVD: 9c543322-8898-11e7-a432-000c2975a0fc // CNVD: CNVD-2016-04435

AFFECTED PRODUCTS

vendor:	siemens	model:	sicam pas	scope:	lt	version:	8.07	Trust: 1.4
vendor:	siemens	model:	sicam pas\/pqs	scope:	lte	version:	8.07	Trust: 1.0
vendor:	siemens	model:	sicam pas	scope:	eq	version:	8.06	Trust: 0.6
vendor:	sicam pas	model:	-	scope:	eq	version:	*	Trust: 0.2

sources: IVD: 9c543322-8898-11e7-a432-000c2975a0fc // CNVD: CNVD-2016-04435 // JVNDB: JVNDB-2016-003484 // CNNVD: CNNVD-201606-674 // NVD: CVE-2016-5848

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2016-5848
value:	MEDIUM
Trust: 1.0
NVD:	CVE-2016-5848
value:	MEDIUM
Trust: 0.8
CNVD:	CNVD-2016-04435
value:	MEDIUM
Trust: 0.6
CNNVD:	CNNVD-201606-674
value:	LOW
Trust: 0.6
IVD:	9c543322-8898-11e7-a432-000c2975a0fc
value:	LOW
Trust: 0.2
VULHUB:	VHN-94668
value:	LOW
Trust: 0.1

nvd@nist.gov:	CVE-2016-5848
severity:	LOW
baseScore:	1.7
vectorString:	AV:L/AC:L/AU:S/C:P/I:N/A:N
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	SINGLE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	3.1
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
CNVD:	CNVD-2016-04435
severity:	MEDIUM
baseScore:	4.3
vectorString:	AV:L/AC:L/AU:M/C:C/I:N/A:N
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	MULTIPLE
confidentialityImpact:	COMPLETE
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	2.5
impactScore:	6.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6
IVD:	9c543322-8898-11e7-a432-000c2975a0fc
severity:	MEDIUM
baseScore:	4.3
vectorString:	AV:L/AC:L/AU:M/C:C/I:N/A:N
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	MULTIPLE
confidentialityImpact:	COMPLETE
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	2.5
impactScore:	6.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.9 [IVD]
Trust: 0.2
VULHUB:	VHN-94668
severity:	LOW
baseScore:	1.7
vectorString:	AV:L/AC:L/AU:S/C:P/I:N/A:N
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	SINGLE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	3.1
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

nvd@nist.gov:	CVE-2016-5848
baseSeverity:	MEDIUM
baseScore:	6.7
vectorString:	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
attackVector:	LOCAL
attackComplexity:	LOW
privilegesRequired:	HIGH
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	0.8
impactScore:	5.9
version:	3.1
Trust: 1.0
NVD:	CVE-2016-5848
baseSeverity:	MEDIUM
baseScore:	6.7
vectorString:	CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
attackVector:	LOCAL
attackComplexity:	LOW
privilegesRequired:	HIGH
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: IVD: 9c543322-8898-11e7-a432-000c2975a0fc // CNVD: CNVD-2016-04435 // VULHUB: VHN-94668 // JVNDB: JVNDB-2016-003484 // CNNVD: CNNVD-201606-674 // NVD: CVE-2016-5848

PROBLEMTYPE DATA

problemtype:	CWE-200	Trust: 1.9
problemtype:	CWE-255	Trust: 1.9

sources: VULHUB: VHN-94668 // JVNDB: JVNDB-2016-003484 // NVD: CVE-2016-5848

THREAT TYPE

local

Trust: 0.9

sources: BID: 91525 // CNNVD: CNNVD-201606-674

TYPE

information disclosure

Trust: 0.6

sources: CNNVD: CNNVD-201606-674

CONFIGURATIONS

sources: JVNDB: JVNDB-2016-003484

PATCH

title:	SSA-444217	url:	http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-444217.pdf	Trust: 0.8
title:	Siemens SICAM PAS Information Disclosure Vulnerability Patch	url:	https://www.cnvd.org.cn/patchInfo/show/78476	Trust: 0.6
title:	Siemens SICAM PAS Security vulnerabilities	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=62583	Trust: 0.6

sources: CNVD: CNVD-2016-04435 // JVNDB: JVNDB-2016-003484 // CNNVD: CNNVD-201606-674

EXTERNAL IDS

db:	NVD	id:	CVE-2016-5848	Trust: 3.6
db:	ICS CERT	id:	ICSA-16-182-02	Trust: 2.5
db:	SIEMENS	id:	SSA-444217	Trust: 2.3
db:	BID	id:	91525	Trust: 1.4
db:	CNVD	id:	CNVD-2016-04435	Trust: 0.8
db:	CNNVD	id:	CNNVD-201606-674	Trust: 0.8
db:	JVNDB	id:	JVNDB-2016-003484	Trust: 0.8
db:	IVD	id:	9C543322-8898-11E7-A432-000C2975A0FC	Trust: 0.2
db:	VULHUB	id:	VHN-94668	Trust: 0.1

sources: IVD: 9c543322-8898-11e7-a432-000c2975a0fc // CNVD: CNVD-2016-04435 // VULHUB: VHN-94668 // BID: 91525 // JVNDB: JVNDB-2016-003484 // CNNVD: CNNVD-201606-674 // NVD: CVE-2016-5848

REFERENCES

url:	https://ics-cert.us-cert.gov/advisories/icsa-16-182-02	Trust: 2.5
url:	http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-444217.pdf	Trust: 2.3
url:	http://www.securityfocus.com/bid/91525	Trust: 1.1
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2016-5848	Trust: 0.8
url:	http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2016-5848	Trust: 0.8
url:	http://subscriber.communications.siemens.com/	Trust: 0.3

sources: CNVD: CNVD-2016-04435 // VULHUB: VHN-94668 // BID: 91525 // JVNDB: JVNDB-2016-003484 // CNNVD: CNNVD-201606-674 // NVD: CVE-2016-5848

CREDITS

Ilya Karpov and Dmitry Sklyarov

Trust: 0.3

sources: BID: 91525

SOURCES

db:	IVD	id:	9c543322-8898-11e7-a432-000c2975a0fc
db:	CNVD	id:	CNVD-2016-04435
db:	VULHUB	id:	VHN-94668
db:	BID	id:	91525
db:	JVNDB	id:	JVNDB-2016-003484
db:	CNNVD	id:	CNNVD-201606-674
db:	NVD	id:	CVE-2016-5848

LAST UPDATE DATE

2024-11-23T22:27:01.036000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2016-04435	date:	2016-07-01T00:00:00
db:	VULHUB	id:	VHN-94668	date:	2016-11-28T00:00:00
db:	BID	id:	91525	date:	2016-07-01T00:00:00
db:	JVNDB	id:	JVNDB-2016-003484	date:	2016-12-08T00:00:00
db:	CNNVD	id:	CNNVD-201606-674	date:	2016-07-05T00:00:00
db:	NVD	id:	CVE-2016-5848	date:	2024-11-21T02:55:07.847

SOURCES RELEASE DATE

db:	IVD	id:	9c543322-8898-11e7-a432-000c2975a0fc	date:	2016-07-01T00:00:00
db:	CNVD	id:	CNVD-2016-04435	date:	2016-07-01T00:00:00
db:	VULHUB	id:	VHN-94668	date:	2016-07-04T00:00:00
db:	BID	id:	91525	date:	2016-07-01T00:00:00
db:	JVNDB	id:	JVNDB-2016-003484	date:	2016-07-11T00:00:00
db:	CNNVD	id:	CNNVD-201606-674	date:	2016-06-30T00:00:00
db:	NVD	id:	CVE-2016-5848	date:	2016-07-04T16:59:01.863