CVE-2013-3633

A vulnerability has been identified in SCALANCE X-200 switch family (incl. SIPLUS NET variants) (Versions < V5.0.0 for CVE-2013-3633 and versions < V4.5.0 for CVE-2013-3634), SCALANCE X-200IRT switch family (incl. SIPLUS NET variants) (All versions < V5.1.0). The user privileges for the web interface are only enforced on client side and not properly verified on server side. Therefore, an attacker is able to execute privileged commands using an unprivileged account.

CVSS v2.0 8.0 HIGH

8.0^/10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:S/C:P/I:P/A:C

Exploitability : 8.0 / Impact : 8.5

Access Vector NETWORK

Access Complexity LOW

Authentication SINGLE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact COMPLETE

References

Link	Resource
https://cert-portal.siemens.com/productcert/pdf/ssa-170686.pdf
https://cert-portal.siemens.com/productcert/pdf/ssa-170686.pdf

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:siemens:scalance_x200irt_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:siemens:scalance_x200-4p_irt:-:::::::*
	cpe:2.3:h:siemens:scalance_x201-3p_irt:-:::::::*
	cpe:2.3:h:siemens:scalance_x201-3p_irt:-:-:pro:::::*
	cpe:2.3:h:siemens:scalance_x202-2irt:-:::::::*
	cpe:2.3:h:siemens:scalance_x202-2p_irt:-:::::::*
	cpe:2.3:h:siemens:scalance_x202-2p_irt:-:-:pro:::::*
	cpe:2.3:h:siemens:scalance_x204irt:-:::::::*
	cpe:2.3:h:siemens:scalance_x204irt:-:-:pro:::::*
	cpe:2.3:h:siemens:scalance_xf204irt:-:::::::*

History

21 Nov 2024, 01:54

Type	Values Removed	Values Added
References	~~() https://cert-portal.siemens.com/productcert/pdf/ssa-170686.pdf -~~	() https://cert-portal.siemens.com/productcert/pdf/ssa-170686.pdf -

Information

Published : 2013-05-24 20:55

Updated : 2025-04-11 00:51

NVD link : CVE-2013-3633

Mitre link : CVE-2013-3633

CVE.ORG link : CVE-2013-3633

JSON object : View

Products Affected

siemens

scalance_x202-2p_irt
scalance_x200-4p_irt
scalance_x201-3p_irt
scalance_xf204irt
scalance_x202-2irt
scalance_x204irt
scalance_x200irt_firmware

CWE

CWE-264

Permissions, Privileges, and Access Controls

{"id": "CVE-2013-3633", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 8.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:C", "authentication": "SINGLE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 8.5, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 8.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2013-05-24T20:55:01.737", "references": [{"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-170686.pdf", "source": "cve@mitre.org"}, {"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-170686.pdf", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Deferred", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-264"}]}], "descriptions": [{"lang": "en", "value": "A vulnerability has been identified in SCALANCE X-200 switch family (incl. SIPLUS NET variants) (Versions < V5.0.0 for CVE-2013-3633 and versions < V4.5.0 for CVE-2013-3634), SCALANCE X-200IRT switch family (incl. SIPLUS NET variants) (All versions < V5.1.0). The user privileges for the web interface are only enforced on client side and not properly verified on server side. Therefore, an attacker is able to execute privileged commands using an unprivileged account."}, {"lang": "es", "value": "Se ha identificado una vulnerabilidad en la familia de conmutadores SCALANCE X-200 (incluidas las variantes SIPLUS NET) (Versiones anteriores a la versi\u00f3n V5.0.0 para CVE-2013-3633 y versiones anteriores a la versi\u00f3n V4.5.0 para CVE-2013-3634), conmutador SCALANCE X-200IRT familia (incluidas las variantes SIPLUS NET) (Todas las versiones anteriores a la versi\u00f3n V5.1.0). Los privilegios de usuario para la interfaz web solo se aplican en el lado del cliente y no se verifican adecuadamente en el lado del servidor. Por lo tanto, un atacante puede ejecutar comandos con privilegios utilizando una cuenta sin privilegios."}], "lastModified": "2025-04-11T00:51:21.963", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:scalance_x200irt_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "50D308F8-83C2-4404-9C12-7A033006A350", "versionEndIncluding": "5.0.0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:scalance_x200-4p_irt:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8B9CBC72-92D9-4B3A-884F-33124C457016"}, {"criteria": "cpe:2.3:h:siemens:scalance_x201-3p_irt:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3268CF75-6DAB-416A-B19B-2A8F95C268CF"}, {"criteria": "cpe:2.3:h:siemens:scalance_x201-3p_irt:-:-:pro:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "21095E8E-A67B-448C-90B1-6234D931C005"}, {"criteria": "cpe:2.3:h:siemens:scalance_x202-2irt:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A8B1D979-038F-42F4-AB7D-E0664D051B4E"}, {"criteria": "cpe:2.3:h:siemens:scalance_x202-2p_irt:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CEB62730-E759-455A-A308-F9DB084B35B5"}, {"criteria": "cpe:2.3:h:siemens:scalance_x202-2p_irt:-:-:pro:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "39CAF419-AB8D-4F79-A5E7-602A77D55E65"}, {"criteria": "cpe:2.3:h:siemens:scalance_x204irt:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6716DCDE-BD3F-4BA2-A66A-A0C14C6A3C15"}, {"criteria": "cpe:2.3:h:siemens:scalance_x204irt:-:-:pro:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BB688C82-7454-4FD0-B484-C400E7FF4898"}, {"criteria": "cpe:2.3:h:siemens:scalance_xf204irt:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "57E5489B-277A-4D02-B4AB-4DB65969EED2"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "cve@mitre.org"}

8.0 /10