Lucene search

[email protected]CVE-2020-28397

HistoryAug 10, 2021 - 11:15 a.m.

CVE-2020-28397

2021-08-1011:15:00

CWE-863

[email protected]

web.nvd.nist.gov

cve

vulnerability

simatic drive controller

simatic et 200sp

simatic s7 plcsim advanced

simatic s7-1200

simatic s7-1500

tim 1531 irc

information security

plc

port 102/tcp

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

5 Medium

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.001 Low

EPSS

Percentile

35.3%

JSON

A vulnerability has been identified in SIMATIC Drive Controller family (All versions < V2.9.2), SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) (All versions < V21.9), SIMATIC S7 PLCSIM Advanced (All versions > V2 < V4), SIMATIC S7-1200 CPU family (incl. SIPLUS variants) (Version V4.4), SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants) (All versions > V2.5 < V2.9.2), SIMATIC S7-1500 Software Controller (All versions > V2.5 < V21.9), TIM 1531 IRC (incl. SIPLUS NET variants) (Version V2.1). Due to an incorrect authorization check in the affected component, an attacker could extract information about access protected PLC program variables over port 102/tcp from an affected device when reading multiple attributes at once.

CPENameOperatorVersion
siemens:cpu_1504d_tf_firmwaresiemens cpu 1504d tf firmwarelt2.9.2
siemens:cpu_1507d_tf_firmwaresiemens cpu 1507d tf firmwarelt2.9.2
siemens:cpu_1515sp_pc2_tf_firmwaresiemens cpu 1515sp pc2 tf firmwarelt21.9
siemens:simatic_s7_plcsim_advanced_firmwaresiemens simatic s7 plcsim advanced firmwarelt4.0
siemens:simatic_s7-1500_software_controllersiemens simatic s7-1500 software controllerlt21.9
siemens:tim_1531_irc_firmwaresiemens tim 1531 irc firmwareeq2.1
siemens:cpu_1211c_firmwaresiemens cpu 1211c firmwareeq4.4
siemens:cpu_1212c_firmwaresiemens cpu 1212c firmwareeq4.4
siemens:cpu_1212fc_firmwaresiemens cpu 1212fc firmwareeq4.4
siemens:cpu_1214fc_firmwaresiemens cpu 1214fc firmwareeq4.4

CPE	Name	Operator	Version
siemens:cpu_1504d_tf_firmware	siemens cpu 1504d tf firmware	lt	2.9.2
siemens:cpu_1507d_tf_firmware	siemens cpu 1507d tf firmware	lt	2.9.2
siemens:cpu_1515sp_pc2_tf_firmware	siemens cpu 1515sp pc2 tf firmware	lt	21.9
siemens:simatic_s7_plcsim_advanced_firmware	siemens simatic s7 plcsim advanced firmware	lt	4.0
siemens:simatic_s7-1500_software_controller	siemens simatic s7-1500 software controller	lt	21.9
siemens:tim_1531_irc_firmware	siemens tim 1531 irc firmware	eq	2.1
siemens:cpu_1211c_firmware	siemens cpu 1211c firmware	eq	4.4
siemens:cpu_1212c_firmware	siemens cpu 1212c firmware	eq	4.4
siemens:cpu_1212fc_firmware	siemens cpu 1212fc firmware	eq	4.4
siemens:cpu_1214fc_firmware	siemens cpu 1214fc firmware	eq	4.4

Rows per page:

1-10 of 561

References

cert-portal.siemens.com/productcert/pdf/ssa-865327.pdf

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

5 Medium

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.001 Low

EPSS

Percentile

35.3%

JSON

Related for CVE-2020-28397

ics1 cnvd1 nessus1 prion1