CVE-2013-4912

Open redirect vulnerability in Siemens WinCC (TIA Portal) 11 and 12 before 12 SP1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks by leveraging improper configuration of SIMATIC HMI panels by the WinCC product.

CVSS v2.0 5.8 MEDIUM

5.8^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:M/Au:N/C:P/I:P/A:N

Exploitability : 8.6 / Impact : 4.9

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact NONE

References

Link	Resource
http://scadastrangelove.blogspot.com/2013/08/ssa-064884-wincctia-portal-fixes.html
http://secunia.com/advisories/54051
http://secunia.com/advisories/54252
http://www.securityfocus.com/bid/61535
http://www.siemens.com/corporate-technology/pool/de/forschungsfelder/siemens_security_advisory_ssa-064884.pdf	Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/86100
https://ics-cert.us-cert.gov/advisories/ICSA-13-213-02

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:siemens:wincc:11.0:::::::*
	cpe:2.3:a:siemens:wincc:11.0:sp1::::::
	cpe:2.3:a:siemens:wincc:11.0:sp2::::::
	cpe:2.3:a:siemens:wincc:12.0:::::::*

History

No history.

Information

Published : 2013-08-01 13:32

Updated : 2024-02-04 18:16

NVD link : CVE-2013-4912

Mitre link : CVE-2013-4912

CVE.ORG link : CVE-2013-4912

JSON object : View

Products Affected

siemens

wincc

CWE

CWE-20

Improper Input Validation

{"id": "CVE-2013-4912", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.8, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 4.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}]}, "published": "2013-08-01T13:32:26.127", "references": [{"url": "http://scadastrangelove.blogspot.com/2013/08/ssa-064884-wincctia-portal-fixes.html", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/54051", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/54252", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/61535", "source": "cve@mitre.org"}, {"url": "http://www.siemens.com/corporate-technology/pool/de/forschungsfelder/siemens_security_advisory_ssa-064884.pdf", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/86100", "source": "cve@mitre.org"}, {"url": "https://ics-cert.us-cert.gov/advisories/ICSA-13-213-02", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-20"}]}], "descriptions": [{"lang": "en", "value": "Open redirect vulnerability in Siemens WinCC (TIA Portal) 11 and 12 before 12 SP1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks by leveraging improper configuration of SIMATIC HMI panels by the WinCC product."}, {"lang": "es", "value": "Vulnerabilidad de redirecci\u00f3n en Siemens WinCC (TIA Portal) 11 y 12 anterior a 12 SP1, permite a atacantes remotos redireccionar a usuarios a sitios web arbitrarios y llevar a cabo ataques de phishing aprovechando una configuraci\u00f3n inapropiada del panel SIMANTIC HMI del producto WinCC."}], "lastModified": "2017-08-29T01:33:41.247", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:siemens:wincc:11.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D8575F81-50D2-4879-AA97-232257913BA0"}, {"criteria": "cpe:2.3:a:siemens:wincc:11.0:sp1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8730C7C7-D7C7-4094-99AB-6FD06D7AAB90"}, {"criteria": "cpe:2.3:a:siemens:wincc:11.0:sp2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F9B98FB4-A080-41DC-8B1C-DA703C8975E3"}, {"criteria": "cpe:2.3:a:siemens:wincc:12.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "30A9D051-1796-4736-97F7-3F07917E9873"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}