ID
VAR-201907-1466
CVE
CVE-2019-10915
TITLE
Siemens TIA Administrator Authentication vulnerability
Trust: 0.8
DESCRIPTION
A vulnerability has been identified in TIA Administrator (All versions < V1.0 SP1 Upd1). The integrated configuration web application (TIA Administrator) allows to execute certain application commands without proper authentication. The vulnerability could be exploited by an attacker with local access to the affected system. Successful exploitation requires no privileges and no user interaction. An attacker could use the vulnerability to compromise confidentiality and integrity and availability of the affected system. At the time of advisory publication no public exploitation of this security vulnerability was known. TIA Administrator Contains vulnerabilities related to authorization, permissions, and access control.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. SimaticWinCC (TIAPortal) is an engineering software for configuring and programming Simatic panels, Simatic industrial PCs and standard PCWinccruntime professional visualization software running WinCC RuntimeAdvanced or SCADA systems. An authentication vulnerability exists in SiemensTIAAdministrator. An attacker can exploit this issue to bypass the authentication mechanism or execute arbitrary commands. This may aid in further attacks
Trust: 2.61
IOT TAXONOMY
| category: | ['ICS'] | sub_category: | - | Trust: 0.8 |
AFFECTED PRODUCTS
| vendor: | siemens | model: | sinetplan | scope: | eq | version: | 2.0 | Trust: 1.0 |
| vendor: | siemens | model: | tia administrator | scope: | eq | version: | 1.0 | Trust: 1.0 |
| vendor: | siemens | model: | tia administrator | scope: | lt | version: | 1.0 sp1 upd1 | Trust: 0.8 |
| vendor: | siemens | model: | tia administrato sp1 upd1 | scope: | lt | version: | v1.0 | Trust: 0.6 |
| vendor: | siemens | model: | tia administrator | scope: | eq | version: | 0 | Trust: 0.3 |
| vendor: | siemens | model: | tia administrator sp1 upd1 | scope: | ne | version: | 1.0 | Trust: 0.3 |
| vendor: | tia administrator | model: | - | scope: | eq | version: | 1.0 | Trust: 0.2 |
CVSS
SEVERITY | CVSSV2 | CVSSV3 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
|
PROBLEMTYPE DATA
| problemtype: | CWE-306 | Trust: 1.0 |
| problemtype: | CWE-264 | Trust: 0.8 |
THREAT TYPE
local
Trust: 0.9
TYPE
access control error
Trust: 0.6
CONFIGURATIONS
PATCH
| title: | SSA-721298 | url: | https://cert-portal.siemens.com/productcert/pdf/ssa-721298.pdf | Trust: 0.8 |
| title: | SSA-834884 | url: | https://cert-portal.siemens.com/productcert/pdf/ssa-834884.pdf | Trust: 0.8 |
| title: | Patch for SiemensTIAAdministrator authentication vulnerability | url: | https://www.cnvd.org.cn/patchInfo/show/168525 | Trust: 0.6 |
| title: | Siemens TIA Administrator Fixes for access control error vulnerabilities | url: | http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=95226 | Trust: 0.6 |
EXTERNAL IDS
| db: | NVD | id: | CVE-2019-10915 | Trust: 3.5 |
| db: | SIEMENS | id: | SSA-721298 | Trust: 2.5 |
| db: | ICS CERT | id: | ICSA-19-253-02 | Trust: 2.4 |
| db: | BID | id: | 109124 | Trust: 1.9 |
| db: | ICS CERT | id: | ICSA-19-192-03 | Trust: 1.7 |
| db: | SIEMENS | id: | SSA-834884 | Trust: 1.6 |
| db: | CNVD | id: | CNVD-2019-22235 | Trust: 0.8 |
| db: | CNNVD | id: | CNNVD-201907-692 | Trust: 0.8 |
| db: | JVNDB | id: | JVNDB-2019-007049 | Trust: 0.8 |
| db: | AUSCERT | id: | ESB-2019.3444 | Trust: 0.6 |
| db: | AUSCERT | id: | ESB-2019.2587 | Trust: 0.6 |
| db: | IVD | id: | C0202593-9236-4865-9B2D-EBB56C677CA4 | Trust: 0.2 |
REFERENCES
| url: | https://cert-portal.siemens.com/productcert/pdf/ssa-721298.pdf | Trust: 2.5 |
| url: | https://www.us-cert.gov/ics/advisories/icsa-19-253-02 | Trust: 2.4 |
| url: | http://www.securityfocus.com/bid/109124 | Trust: 2.2 |
| url: | https://www.us-cert.gov/ics/advisories/icsa-19-192-03 | Trust: 1.7 |
| url: | https://cert-portal.siemens.com/productcert/pdf/ssa-834884.pdf | Trust: 1.6 |
| url: | https://nvd.nist.gov/vuln/detail/cve-2019-10915 | Trust: 1.4 |
| url: | https://medium.com/tenable-techblog/nuclear-meltdown-with-critical-ics-vulnerabilities-8af3a1a13e6a | Trust: 0.9 |
| url: | http://www.siemens.com/ | Trust: 0.9 |
| url: | https://github.com/tenable/poc/tree/master/siemens/tiaportal | Trust: 0.9 |
| url: | https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-10915 | Trust: 0.8 |
| url: | https://www.auscert.org.au/bulletins/esb-2019.3444/ | Trust: 0.6 |
| url: | https://www.auscert.org.au/bulletins/esb-2019.2587/ | Trust: 0.6 |
CREDITS
Joseph Bingham from Tenable.
Trust: 0.9
SOURCES
| db: | IVD | id: | c0202593-9236-4865-9b2d-ebb56c677ca4 |
| db: | CNVD | id: | CNVD-2019-22235 |
| db: | BID | id: | 109124 |
| db: | JVNDB | id: | JVNDB-2019-007049 |
| db: | CNNVD | id: | CNNVD-201907-692 |
| db: | NVD | id: | CVE-2019-10915 |
LAST UPDATE DATE
2024-08-14T13:44:53.169000+00:00
SOURCES UPDATE DATE
| db: | CNVD | id: | CNVD-2019-22235 | date: | 2019-07-12T00:00:00 |
| db: | BID | id: | 109124 | date: | 2019-07-09T00:00:00 |
| db: | JVNDB | id: | JVNDB-2019-007049 | date: | 2019-10-04T00:00:00 |
| db: | CNNVD | id: | CNNVD-201907-692 | date: | 2020-10-28T00:00:00 |
| db: | NVD | id: | CVE-2019-10915 | date: | 2020-10-02T14:29:36.723 |
SOURCES RELEASE DATE
| db: | IVD | id: | c0202593-9236-4865-9b2d-ebb56c677ca4 | date: | 2019-07-12T00:00:00 |
| db: | CNVD | id: | CNVD-2019-22235 | date: | 2019-07-12T00:00:00 |
| db: | BID | id: | 109124 | date: | 2019-07-09T00:00:00 |
| db: | JVNDB | id: | JVNDB-2019-007049 | date: | 2019-07-31T00:00:00 |
| db: | CNNVD | id: | CNNVD-201907-692 | date: | 2019-07-11T00:00:00 |
| db: | NVD | id: | CVE-2019-10915 | date: | 2019-07-11T22:15:11.047 |