Lucene search

[email protected]CVE-2011-4878

HistoryFeb 03, 2012 - 8:55 p.m.

CVE-2011-4878

2012-02-0320:55:02

CWE-22

[email protected]

web.nvd.nist.gov

cve

2011

4878

directory traversal

vulnerability

siemens

wincc

tia portal

hmi

web server

miniweb.exe

nvd

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:N/A:N

6.8 Medium

AI Score

Confidence

Low

0.011 Low

EPSS

Percentile

84.2%

JSON

Directory traversal vulnerability in miniweb.exe in the HMI web server in Siemens WinCC flexible 2004, 2005, 2007, and 2008 before SP3; WinCC V11 (aka TIA portal) before SP2 Update 1; the TP, OP, MP, Comfort Panels, and Mobile Panels SIMATIC HMI panels; WinCC V11 Runtime Advanced; and WinCC flexible Runtime allows remote attackers to read arbitrary files via a …%5c (dot dot backslash) in a URI.

Affected configurations

NVD

Node

siemenswincc_flexibleMatch2004

siemenswincc_flexibleMatch2005

siemenswincc_flexibleMatch2007

siemenswincc_flexibleMatch2008

siemenswincc_flexibleMatch2008sp1

siemenswincc_flexibleMatch2008sp2

Node

siemenswinccRange≤v11sp2

siemenswinccMatchv11

siemenswinccMatchv11sp1

Node

siemenssimatic_hmi_panelsMatchcomfort_panels

siemenssimatic_hmi_panelsMatchmobile_panels

siemenssimatic_hmi_panelsMatchmp

siemenssimatic_hmi_panelsMatchop

siemenssimatic_hmi_panelsMatchtp

Node

siemenswincc_runtime_advancedMatchv11

Node

siemenswincc_flexible_runtime

CPENameOperatorVersion
siemens:wincc_flexiblesiemens wincc flexibleeq2004
siemens:wincc_flexiblesiemens wincc flexibleeq2005
siemens:wincc_flexiblesiemens wincc flexibleeq2007
siemens:wincc_flexiblesiemens wincc flexibleeq2008

CPE	Name	Operator	Version
siemens:wincc_flexible	siemens wincc flexible	eq	2004
siemens:wincc_flexible	siemens wincc flexible	eq	2005
siemens:wincc_flexible	siemens wincc flexible	eq	2007
siemens:wincc_flexible	siemens wincc flexible	eq	2008