Details of VAR-201905-1074

ID

VAR-201905-1074

CVE

CVE-2019-10920

TITLE

Siemens LOGO!8 BM Information Disclosure Vulnerability

Trust: 0.8

sources: IVD: 5847bd4d-7106-4b17-b9fe-897506321608 // CNVD: CNVD-2019-17522

DESCRIPTION

A vulnerability has been identified in LOGO! 8 BM (incl. SIPLUS variants) (All versions < V8.3). Project data stored on the device, which is accessible via port 10005/tcp, can be decrypted due to a hardcoded encryption key. The security vulnerability could be exploited by an unauthenticated attacker with network access to port 10005/tcp. No user interaction is required to exploit this security vulnerability. The vulnerability impacts confidentiality of the device. At the time of advisory publication no public exploitation of this security vulnerability was known. LOGO!8 BM contains a vulnerability related to the use of hardcoded encryption keys.Information may be obtained. LOGO!8 is Siemens' 8th generation intelligent logic controller, which is a Nano PLC in the Siemens PLC family. It simplifies the programming configuration, the integrated panel can display more content, and can be easily networked through the integrated Ethernet interface. Efficient interconnection. An information disclosure vulnerability exists in Siemens LOGO!8 BM. An attacker can exploit these issues to obtain sensitive information. Successful exploits may lead to other attacks. All versions of LOGO!8 BM are vulnerable. This vulnerability stems from the lack of an effective trust management mechanism in network systems or products. Attackers can use default passwords or hard-coded passwords, hard-coded certificates, etc. to attack affected components

Trust: 2.79

sources: NVD: CVE-2019-10920 // JVNDB: JVNDB-2019-004557 // CNVD: CNVD-2019-17522 // BID: 108382 // IVD: 5847bd4d-7106-4b17-b9fe-897506321608 // VULHUB: VHN-142515 // VULMON: CVE-2019-10920

IOT TAXONOMY

category:

['ICS']

sub_category:

Trust: 0.8

sources: IVD: 5847bd4d-7106-4b17-b9fe-897506321608 // CNVD: CNVD-2019-17522

AFFECTED PRODUCTS

vendor:	siemens	model:	logo\!8 bm	scope:	lt	version:	8.3	Trust: 1.0
vendor:	siemens	model:	logo\!8 bm	scope:	eq	version:	*	Trust: 1.0
vendor:	シーメンス	model:	logo! 8 bm	scope:	eq	version:	logo! 8 bm firmware	Trust: 0.8
vendor:	シーメンス	model:	logo! 8 bm	scope:	eq	version:	-	Trust: 0.8
vendor:	siemens	model:	logo!8 bm	scope:	-	version:	-	Trust: 0.6
vendor:	siemens	model:	logo!8 bm	scope:	eq	version:	0	Trust: 0.3
vendor:	logo 8 bm	model:	-	scope:	eq	version:	*	Trust: 0.2

sources: IVD: 5847bd4d-7106-4b17-b9fe-897506321608 // CNVD: CNVD-2019-17522 // BID: 108382 // JVNDB: JVNDB-2019-004557 // NVD: CVE-2019-10920

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2019-10920
value:	HIGH
Trust: 1.0
NVD:	CVE-2019-10920
value:	HIGH
Trust: 0.8
CNVD:	CNVD-2019-17522
value:	MEDIUM
Trust: 0.6
CNNVD:	CNNVD-201905-599
value:	HIGH
Trust: 0.6
IVD:	5847bd4d-7106-4b17-b9fe-897506321608
value:	HIGH
Trust: 0.2
VULHUB:	VHN-142515
value:	MEDIUM
Trust: 0.1
VULMON:	CVE-2019-10920
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2019-10920
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.9
CNVD:	CNVD-2019-17522
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6
IVD:	5847bd4d-7106-4b17-b9fe-897506321608
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.9 [IVD]
Trust: 0.2
VULHUB:	VHN-142515
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

nvd@nist.gov:	CVE-2019-10920
baseSeverity:	HIGH
baseScore:	7.5
vectorString:	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	3.9
impactScore:	3.6
version:	3.1
Trust: 1.0
NVD:	CVE-2019-10920
baseSeverity:	HIGH
baseScore:	7.5
vectorString:	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: IVD: 5847bd4d-7106-4b17-b9fe-897506321608 // CNVD: CNVD-2019-17522 // VULHUB: VHN-142515 // VULMON: CVE-2019-10920 // JVNDB: JVNDB-2019-004557 // CNNVD: CNNVD-201905-599 // NVD: CVE-2019-10920

PROBLEMTYPE DATA

problemtype:	CWE-798	Trust: 1.1
problemtype:	CWE-321	Trust: 1.0
problemtype:	Using hardcoded encryption keys (CWE-321) [ others ]	Trust: 0.8
problemtype:	Use hard-coded credentials (CWE-798) [NVD evaluation ]	Trust: 0.8

sources: VULHUB: VHN-142515 // JVNDB: JVNDB-2019-004557 // NVD: CVE-2019-10920

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201905-599

TYPE

trust management problem

Trust: 0.6

sources: CNNVD: CNNVD-201905-599

PATCH

title:	SSA-542701	url:	https://cert-portal.siemens.com/productcert/pdf/ssa-542701.pdf	Trust: 0.8
title:	Siemens LOGO! 8 BM Information Disclosure Vulnerability Patch	url:	https://www.cnvd.org.cn/patchInfo/show/163683	Trust: 0.6
title:	Siemens Security Advisories: Siemens Security Advisory	url:	https://vulmon.com/vendoradvisory?qidtp=siemens_security_advisories&qid=f5fb9ce0e2d1f9a70355e7812f9314f9	Trust: 0.1

sources: CNVD: CNVD-2019-17522 // VULMON: CVE-2019-10920 // JVNDB: JVNDB-2019-004557

EXTERNAL IDS

db:	NVD	id:	CVE-2019-10920	Trust: 4.5
db:	SIEMENS	id:	SSA-542701	Trust: 2.4
db:	BID	id:	108382	Trust: 2.1
db:	PACKETSTORM	id:	153122	Trust: 1.8
db:	ICS CERT	id:	ICSA-19-134-04	Trust: 1.8
db:	CNNVD	id:	CNNVD-201905-599	Trust: 0.9
db:	CNVD	id:	CNVD-2019-17522	Trust: 0.8
db:	JVNDB	id:	JVNDB-2019-004557	Trust: 0.8
db:	ICS CERT	id:	ICSA-19-134-02	Trust: 0.6
db:	AUSCERT	id:	ESB-2019.1716.2	Trust: 0.6
db:	IVD	id:	5847BD4D-7106-4B17-B9FE-897506321608	Trust: 0.2
db:	VULHUB	id:	VHN-142515	Trust: 0.1
db:	VULMON	id:	CVE-2019-10920	Trust: 0.1

sources: IVD: 5847bd4d-7106-4b17-b9fe-897506321608 // CNVD: CNVD-2019-17522 // VULHUB: VHN-142515 // VULMON: CVE-2019-10920 // BID: 108382 // JVNDB: JVNDB-2019-004557 // CNNVD: CNNVD-201905-599 // NVD: CVE-2019-10920

REFERENCES

url:	http://packetstormsecurity.com/files/153122/siemens-logo-8-hard-coded-cryptographic-key.html	Trust: 3.1
url:	http://www.securityfocus.com/bid/108382	Trust: 3.0
url:	https://cert-portal.siemens.com/productcert/pdf/ssa-542701.pdf	Trust: 2.4
url:	https://seclists.org/bugtraq/2019/may/72	Trust: 1.8
url:	http://seclists.org/fulldisclosure/2019/may/44	Trust: 1.8
url:	https://nvd.nist.gov/vuln/detail/cve-2019-10920	Trust: 1.4
url:	https://ics-cert.us-cert.gov/advisories/icsa-19-134-04	Trust: 1.0
url:	http://www.siemens.com/	Trust: 0.9
url:	https://www.us-cert.gov/ics/advisories/icsa-19-134-04	Trust: 0.8
url:	https://ics-cert.us-cert.gov/advisories/icsa-19-134-02-0	Trust: 0.6
url:	https://us-cert.cisa.gov/ics/advisories/icsa-19-134-04	Trust: 0.6
url:	https://www.auscert.org.au/bulletins/80946	Trust: 0.6
url:	https://cwe.mitre.org/data/definitions/321.html	Trust: 0.1
url:	https://nvd.nist.gov	Trust: 0.1

sources: CNVD: CNVD-2019-17522 // VULHUB: VHN-142515 // VULMON: CVE-2019-10920 // BID: 108382 // JVNDB: JVNDB-2019-004557 // CNNVD: CNNVD-201905-599 // NVD: CVE-2019-10920

CREDITS

Manuel Stotz and Matthias Deeg from SySS GmbH reported these vulnerabilities to Siemens.

Trust: 0.6

sources: CNNVD: CNNVD-201905-599

SOURCES

db:	IVD	id:	5847bd4d-7106-4b17-b9fe-897506321608
db:	CNVD	id:	CNVD-2019-17522
db:	VULHUB	id:	VHN-142515
db:	VULMON	id:	CVE-2019-10920
db:	BID	id:	108382
db:	JVNDB	id:	JVNDB-2019-004557
db:	CNNVD	id:	CNNVD-201905-599
db:	NVD	id:	CVE-2019-10920

LAST UPDATE DATE

2024-12-28T22:51:38.154000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2019-17522	date:	2019-06-16T00:00:00
db:	VULHUB	id:	VHN-142515	date:	2019-05-30T00:00:00
db:	VULMON	id:	CVE-2019-10920	date:	2022-01-04T00:00:00
db:	BID	id:	108382	date:	2019-05-14T00:00:00
db:	JVNDB	id:	JVNDB-2019-004557	date:	2024-12-27T03:14:00
db:	CNNVD	id:	CNNVD-201905-599	date:	2020-12-15T00:00:00
db:	NVD	id:	CVE-2019-10920	date:	2024-11-21T04:20:09.217

SOURCES RELEASE DATE

db:	IVD	id:	5847bd4d-7106-4b17-b9fe-897506321608	date:	2019-06-16T00:00:00
db:	CNVD	id:	CNVD-2019-17522	date:	2019-05-22T00:00:00
db:	VULHUB	id:	VHN-142515	date:	2019-05-14T00:00:00
db:	VULMON	id:	CVE-2019-10920	date:	2019-05-14T00:00:00
db:	BID	id:	108382	date:	2019-05-14T00:00:00
db:	JVNDB	id:	JVNDB-2019-004557	date:	2019-06-04T00:00:00
db:	CNNVD	id:	CNNVD-201905-599	date:	2019-05-14T00:00:00
db:	NVD	id:	CVE-2019-10920	date:	2019-05-14T20:29:02.637