The vulnerability of the software development environment of Totally Integrated Automation Portal (Portal TIA) lies in the breach of the data protection mechanism, allowing attackers to restore an unsecured version of the project.

🗓️ 06 Jul 2023 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType

bdu_fstec

bdu_fstec🔗 bdu.fstec.ru👁 3 Views

Portal TIA development environment breach of data protection enables restoring an unsecured project.

Reporter	Title	Published	Views	Family All 12
CNNVD	Siemens TIA Portal 安全漏洞	13 Jun 202300:00	–	cnnvd
CNVD	Siemens Totally Integrated Automation Portal Protection Mechanism Failure Vulnerability	14 Jun 202300:00	–	cnvd
CVE	CVE-2023-30757	13 Jun 202308:17	–	cve
Cvelist	CVE-2023-30757	13 Jun 202308:17	–	cvelist
EUVD	EUVD-2023-35121	3 Oct 202520:07	–	euvd
ICS	Siemens TIA Portal	13 Jun 202300:00	–	ics
NCSC	Vulnerabilities fixed in Siemens products	13 Jun 202300:00	–	ncsc
NCSC	Vulnerabilities fixed in Siemens products	12 Dec 202300:00	–	ncsc
NVD	CVE-2023-30757	13 Jun 202309:15	–	nvd
OSV	CVE-2023-30757	13 Jun 202309:15	–	osv

Vulners

Node

siemens_ag tia_portalMatch14

OR

siemens_ag tia_portalMatch16

OR

siemens_ag tia_portalMatch15

OR

siemens_ag tia_portalMatch15.1

OR

siemens_ag tia_portalMatch17

OR

siemens_ag tia_portalMatch18

Source	Link
cert-portal	www.cert-portal.siemens.com/productcert/pdf/ssa-042050.pdf
cybersecurity-help	www.cybersecurity-help.cz/vdb/SB2023061512
vuldb	www.vuldb.com/
web	www.web.nvd.nist.gov/view/vuln/detail

06 Jul 2023 00:00Current

5.9Medium risk

Vulners AI Score5.9

CVSS 24.9

CVSS 36.2

EPSS0.0012

Totally Integrated Automation Portal data protection breach unsecured project restoration development environment software vulnerability