Details of VAR-201912-1278

ID

VAR-201912-1278

CVE

CVE-2019-18312

TITLE

SPPA-T3000 MS3000 Migration Server Authentication vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2019-013109

DESCRIPTION

A vulnerability has been identified in SPPA-T3000 MS3000 Migration Server (All versions). An attacker with network access to the MS3000 Server could be able to enumerate running RPC services. Please note that an attacker needs to have network access to the MS3000 in order to exploit this vulnerability. At the time of advisory publication no public exploitation of this security vulnerability was known. SPPA-T3000 is a distributed control system mainly used in thermal power plants and large renewable energy power plants

Trust: 2.34

sources: NVD: CVE-2019-18312 // JVNDB: JVNDB-2019-013109 // CNVD: CNVD-2019-45376 // IVD: 7e813aeb-5666-4e7e-9733-f86207215ca6

IOT TAXONOMY

category:

['ICS']

sub_category:

Trust: 0.8

sources: IVD: 7e813aeb-5666-4e7e-9733-f86207215ca6 // CNVD: CNVD-2019-45376

AFFECTED PRODUCTS

vendor:	siemens	model:	sppa-t3000 ms3000 migration server	scope:	-	version:	-	Trust: 1.4
vendor:	siemens	model:	sppa-t3000 ms3000 migration server	scope:	eq	version:	*	Trust: 1.0
vendor:	sppa t3000 ms3000 migration server	model:	-	scope:	eq	version:	*	Trust: 0.2

sources: IVD: 7e813aeb-5666-4e7e-9733-f86207215ca6 // CNVD: CNVD-2019-45376 // JVNDB: JVNDB-2019-013109 // NVD: CVE-2019-18312

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2019-18312
value:	MEDIUM
Trust: 1.0
NVD:	CVE-2019-18312
value:	MEDIUM
Trust: 0.8
CNVD:	CNVD-2019-45376
value:	MEDIUM
Trust: 0.6
CNNVD:	CNNVD-201912-627
value:	MEDIUM
Trust: 0.6
IVD:	7e813aeb-5666-4e7e-9733-f86207215ca6
value:	MEDIUM
Trust: 0.2

nvd@nist.gov:	CVE-2019-18312
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
CNVD:	CNVD-2019-45376
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6
IVD:	7e813aeb-5666-4e7e-9733-f86207215ca6
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.9 [IVD]
Trust: 0.2

nvd@nist.gov:	CVE-2019-18312
baseSeverity:	MEDIUM
baseScore:	5.3
vectorString:	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	LOW
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	3.9
impactScore:	1.4
version:	3.1
Trust: 1.0
NVD:	CVE-2019-18312
baseSeverity:	MEDIUM
baseScore:	5.3
vectorString:	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	LOW
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: IVD: 7e813aeb-5666-4e7e-9733-f86207215ca6 // CNVD: CNVD-2019-45376 // JVNDB: JVNDB-2019-013109 // CNNVD: CNNVD-201912-627 // NVD: CVE-2019-18312

PROBLEMTYPE DATA

problemtype:

CWE-287

Trust: 1.8

sources: JVNDB: JVNDB-2019-013109 // NVD: CVE-2019-18312

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201912-627

TYPE

authorization issue

Trust: 0.6

sources: CNNVD: CNNVD-201912-627

CONFIGURATIONS

sources: JVNDB: JVNDB-2019-013109

PATCH

title:	SSA-451445	url:	https://cert-portal.siemens.com/productcert/pdf/ssa-451445.pdf	Trust: 0.8
title:	Patch for Siemens SPPA-T3000 MS3000 Migration Server Improper Authentication Vulnerability (CNVD-2019-45376)	url:	https://www.cnvd.org.cn/patchInfo/show/194235	Trust: 0.6

sources: CNVD: CNVD-2019-45376 // JVNDB: JVNDB-2019-013109

EXTERNAL IDS

db:	NVD	id:	CVE-2019-18312	Trust: 3.2
db:	SIEMENS	id:	SSA-451445	Trust: 2.2
db:	ICS CERT	id:	ICSA-19-351-02	Trust: 1.4
db:	CNVD	id:	CNVD-2019-45376	Trust: 0.8
db:	CNNVD	id:	CNNVD-201912-627	Trust: 0.8
db:	JVNDB	id:	JVNDB-2019-013109	Trust: 0.8
db:	AUSCERT	id:	ESB-2019.4705	Trust: 0.6
db:	IVD	id:	7E813AEB-5666-4E7E-9733-F86207215CA6	Trust: 0.2

sources: IVD: 7e813aeb-5666-4e7e-9733-f86207215ca6 // CNVD: CNVD-2019-45376 // JVNDB: JVNDB-2019-013109 // CNNVD: CNNVD-201912-627 // NVD: CVE-2019-18312

REFERENCES

url:	https://cert-portal.siemens.com/productcert/pdf/ssa-451445.pdf	Trust: 2.2
url:	https://www.us-cert.gov/ics/advisories/icsa-19-351-02	Trust: 1.4
url:	https://nvd.nist.gov/vuln/detail/cve-2019-18312	Trust: 1.4
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-18312	Trust: 0.8
url:	https://www.auscert.org.au/bulletins/esb-2019.4705/	Trust: 0.6

sources: CNVD: CNVD-2019-45376 // JVNDB: JVNDB-2019-013109 // CNNVD: CNNVD-201912-627 // NVD: CVE-2019-18312

SOURCES

db:	IVD	id:	7e813aeb-5666-4e7e-9733-f86207215ca6
db:	CNVD	id:	CNVD-2019-45376
db:	JVNDB	id:	JVNDB-2019-013109
db:	CNNVD	id:	CNNVD-201912-627
db:	NVD	id:	CVE-2019-18312

LAST UPDATE DATE

2024-08-14T13:25:14.126000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2019-45376	date:	2019-12-16T00:00:00
db:	JVNDB	id:	JVNDB-2019-013109	date:	2019-12-26T00:00:00
db:	CNNVD	id:	CNNVD-201912-627	date:	2022-03-10T00:00:00
db:	NVD	id:	CVE-2019-18312	date:	2022-03-04T22:19:14.437

SOURCES RELEASE DATE

db:	IVD	id:	7e813aeb-5666-4e7e-9733-f86207215ca6	date:	2019-12-16T00:00:00
db:	CNVD	id:	CNVD-2019-45376	date:	2019-12-16T00:00:00
db:	JVNDB	id:	JVNDB-2019-013109	date:	2019-12-19T00:00:00
db:	CNNVD	id:	CNNVD-201912-627	date:	2019-12-12T00:00:00
db:	NVD	id:	CVE-2019-18312	date:	2019-12-12T19:15:17.967