Details of VAR-201708-1516

ID

VAR-201708-1516

CVE

CVE-2017-9939

TITLE

Siemens SiPass integrated Authentication Bypass Vulnerability

Trust: 0.8

sources: IVD: c47674f6-161e-4f65-a530-ce61ae3f1527 // CNVD: CNVD-2017-14604

DESCRIPTION

A vulnerability was discovered in Siemens SiPass integrated (All versions before V2.70) that could allow an attacker with network access to the SiPass integrated server to bypass the authentication mechanism and perform administrative operations. Siemens SiPass integrated Contains an authentication vulnerability.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. The SiPass server is a component of the SiPass centralized access control system that receives the client's connection for communication. Siemens SiPass integrated is prone to the following security vulnerabilities: 1. An authentication-bypass vulnerability 2. A privilege-escalation vulnerability 3. A man-in-the-middle security bypass vulnerability 4. An information-disclosure vulnerability An attacker may leverage these issues to disclose sensitive information, perform certain unauthorized actions by conducting a man-in-the-middle attack, gain unauthorized access or elevated privileges. Versions prior to SiPass integrated 2.70 are vulnerable

Trust: 2.7

sources: NVD: CVE-2017-9939 // JVNDB: JVNDB-2017-006971 // CNVD: CNVD-2017-14604 // BID: 99578 // IVD: c47674f6-161e-4f65-a530-ce61ae3f1527 // VULHUB: VHN-118142

IOT TAXONOMY

category:

['ICS']

sub_category:

Trust: 0.8

sources: IVD: c47674f6-161e-4f65-a530-ce61ae3f1527 // CNVD: CNVD-2017-14604

AFFECTED PRODUCTS

vendor:	siemens	model:	sipass integrated	scope:	lte	version:	2.65	Trust: 1.0
vendor:	siemens	model:	sipass integrated	scope:	eq	version:	2.70	Trust: 0.8
vendor:	siemens	model:	sipass integrated	scope:	lt	version:	2.70	Trust: 0.6
vendor:	siemens	model:	sipass integrated	scope:	eq	version:	2.65	Trust: 0.6
vendor:	siemens	model:	sipass integrated mp2.6	scope:	-	version:	-	Trust: 0.3
vendor:	siemens	model:	sipass integrated mp2.5	scope:	-	version:	-	Trust: 0.3
vendor:	siemens	model:	sipass integrated mp2.4	scope:	-	version:	-	Trust: 0.3
vendor:	siemens	model:	sipass integrated	scope:	ne	version:	2.70	Trust: 0.3
vendor:	sipass integrated	model:	-	scope:	eq	version:	*	Trust: 0.2

sources: IVD: c47674f6-161e-4f65-a530-ce61ae3f1527 // CNVD: CNVD-2017-14604 // BID: 99578 // JVNDB: JVNDB-2017-006971 // CNNVD: CNNVD-201707-607 // NVD: CVE-2017-9939

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2017-9939
value:	CRITICAL
Trust: 1.0
NVD:	CVE-2017-9939
value:	CRITICAL
Trust: 0.8
CNVD:	CNVD-2017-14604
value:	HIGH
Trust: 0.6
CNNVD:	CNNVD-201707-607
value:	CRITICAL
Trust: 0.6
IVD:	c47674f6-161e-4f65-a530-ce61ae3f1527
value:	CRITICAL
Trust: 0.2
VULHUB:	VHN-118142
value:	HIGH
Trust: 0.1

nvd@nist.gov:	CVE-2017-9939
severity:	HIGH
baseScore:	7.5
vectorString:	AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
CNVD:	CNVD-2017-14604
severity:	HIGH
baseScore:	10.0
vectorString:	AV:N/AC:L/AU:N/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6
IVD:	c47674f6-161e-4f65-a530-ce61ae3f1527
severity:	HIGH
baseScore:	10.0
vectorString:	AV:N/AC:L/AU:N/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.9 [IVD]
Trust: 0.2
VULHUB:	VHN-118142
severity:	HIGH
baseScore:	7.5
vectorString:	AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

nvd@nist.gov:	CVE-2017-9939
baseSeverity:	CRITICAL
baseScore:	9.8
vectorString:	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	3.9
impactScore:	5.9
version:	3.0
Trust: 1.8

sources: IVD: c47674f6-161e-4f65-a530-ce61ae3f1527 // CNVD: CNVD-2017-14604 // VULHUB: VHN-118142 // JVNDB: JVNDB-2017-006971 // CNNVD: CNNVD-201707-607 // NVD: CVE-2017-9939

PROBLEMTYPE DATA

problemtype:

CWE-287

Trust: 1.9

sources: VULHUB: VHN-118142 // JVNDB: JVNDB-2017-006971 // NVD: CVE-2017-9939

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201707-607

TYPE

authorization issue

Trust: 0.6

sources: CNNVD: CNNVD-201707-607

CONFIGURATIONS

sources: JVNDB: JVNDB-2017-006971

PATCH

title:	SSA-339433	url:	https://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-339433.pdf	Trust: 0.8
title:	Siemens SiPass integrated certification to bypass the vulnerability patch	url:	https://www.cnvd.org.cn/patchInfo/show/98177	Trust: 0.6
title:	Siemens SiPass integrated Remediation measures for authorization problem vulnerabilities	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=71721	Trust: 0.6

sources: CNVD: CNVD-2017-14604 // JVNDB: JVNDB-2017-006971 // CNNVD: CNNVD-201707-607

EXTERNAL IDS

db:	NVD	id:	CVE-2017-9939	Trust: 3.6
db:	SIEMENS	id:	SSA-339433	Trust: 2.6
db:	BID	id:	99578	Trust: 2.0
db:	CNNVD	id:	CNNVD-201707-607	Trust: 0.9
db:	CNVD	id:	CNVD-2017-14604	Trust: 0.8
db:	JVNDB	id:	JVNDB-2017-006971	Trust: 0.8
db:	ICS CERT	id:	ICSA-17-194-01	Trust: 0.3
db:	IVD	id:	C47674F6-161E-4F65-A530-CE61AE3F1527	Trust: 0.2
db:	VULHUB	id:	VHN-118142	Trust: 0.1

sources: IVD: c47674f6-161e-4f65-a530-ce61ae3f1527 // CNVD: CNVD-2017-14604 // VULHUB: VHN-118142 // BID: 99578 // JVNDB: JVNDB-2017-006971 // CNNVD: CNNVD-201707-607 // NVD: CVE-2017-9939

REFERENCES

url:	https://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-339433.pdf	Trust: 2.6
url:	http://www.securityfocus.com/bid/99578	Trust: 1.7
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-9939	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2017-9939	Trust: 0.8
url:	http://subscriber.communications.siemens.com/	Trust: 0.3
url:	https://ics-cert.us-cert.gov/advisories/icsa-17-194-01	Trust: 0.3

sources: CNVD: CNVD-2017-14604 // VULHUB: VHN-118142 // BID: 99578 // JVNDB: JVNDB-2017-006971 // CNNVD: CNNVD-201707-607 // NVD: CVE-2017-9939

CREDITS

Siemens

Trust: 0.3

sources: BID: 99578

SOURCES

db:	IVD	id:	c47674f6-161e-4f65-a530-ce61ae3f1527
db:	CNVD	id:	CNVD-2017-14604
db:	VULHUB	id:	VHN-118142
db:	BID	id:	99578
db:	JVNDB	id:	JVNDB-2017-006971
db:	CNNVD	id:	CNNVD-201707-607
db:	NVD	id:	CVE-2017-9939

LAST UPDATE DATE

2024-11-23T21:53:48.820000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2017-14604	date:	2017-07-15T00:00:00
db:	VULHUB	id:	VHN-118142	date:	2019-10-09T00:00:00
db:	BID	id:	99578	date:	2017-07-13T00:00:00
db:	JVNDB	id:	JVNDB-2017-006971	date:	2017-09-07T00:00:00
db:	CNNVD	id:	CNNVD-201707-607	date:	2019-10-17T00:00:00
db:	NVD	id:	CVE-2017-9939	date:	2024-11-21T03:37:13.043

SOURCES RELEASE DATE

db:	IVD	id:	c47674f6-161e-4f65-a530-ce61ae3f1527	date:	2017-07-15T00:00:00
db:	CNVD	id:	CNVD-2017-14604	date:	2017-07-15T00:00:00
db:	VULHUB	id:	VHN-118142	date:	2017-08-08T00:00:00
db:	BID	id:	99578	date:	2017-07-13T00:00:00
db:	JVNDB	id:	JVNDB-2017-006971	date:	2017-09-07T00:00:00
db:	CNNVD	id:	CNNVD-201707-607	date:	2017-07-14T00:00:00
db:	NVD	id:	CVE-2017-9939	date:	2017-08-08T00:29:00.383