Lucene search

SiemensCVE-2022-33138

HistoryJul 12, 2022 - 10:15 a.m.

CVE-2022-33138

2022-07-1210:15:10

CWE-306

siemens

web.nvd.nist.gov

414

cve-2022-33138

simatic mv540

simatic mv550

simatic mv560

vulnerability

unauthenticated access

web api

data exfiltration

nvd

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

AI Score

7.5

Confidence

High

EPSS

0.002

Percentile

59.7%

JSON

A vulnerability has been identified in SIMATIC MV540 H (All versions < V3.3), SIMATIC MV540 S (All versions < V3.3), SIMATIC MV550 H (All versions < V3.3), SIMATIC MV550 S (All versions < V3.3), SIMATIC MV560 U (All versions < V3.3), SIMATIC MV560 X (All versions < V3.3). Affected devices do not perform authentication for several web API endpoints. This could allow an unauthenticated remote attacker to read and download data from the device.

Affected configurations

Nvd

Node

siemenssimatic_mv540_h_firmwareRange<3.3

AND

siemenssimatic_mv540_hMatch-

Node

siemenssimatic_mv540_s_firmwareRange<3.3

AND

siemenssimatic_mv540_sMatch-

Node

siemenssimatic_mv550_h_firmwareRange<3.3

AND

siemenssimatic_mv550_hMatch-

Node

siemenssimatic_mv550_s_firmwareRange<3.3

AND

siemenssimatic_mv550_sMatch-

Node

siemenssimatic_mv560_u_firmwareRange<3.3

AND

siemenssimatic_mv560_uMatch-

Node

siemenssimatic_mv560_x_firmwareRange<3.3

AND

siemenssimatic_mv560_xMatch-

VendorProductVersionCPE
siemenssimatic_mv540_h_firmware*cpe:2.3:o:siemens:simatic_mv540_h_firmware:*:*:*:*:*:*:*:*
siemenssimatic_mv540_h-cpe:2.3:h:siemens:simatic_mv540_h:-:*:*:*:*:*:*:*
siemenssimatic_mv540_s_firmware*cpe:2.3:o:siemens:simatic_mv540_s_firmware:*:*:*:*:*:*:*:*
siemenssimatic_mv540_s-cpe:2.3:h:siemens:simatic_mv540_s:-:*:*:*:*:*:*:*
siemenssimatic_mv550_h_firmware*cpe:2.3:o:siemens:simatic_mv550_h_firmware:*:*:*:*:*:*:*:*
siemenssimatic_mv550_h-cpe:2.3:h:siemens:simatic_mv550_h:-:*:*:*:*:*:*:*
siemenssimatic_mv550_s_firmware*cpe:2.3:o:siemens:simatic_mv550_s_firmware:*:*:*:*:*:*:*:*
siemenssimatic_mv550_s-cpe:2.3:h:siemens:simatic_mv550_s:-:*:*:*:*:*:*:*
siemenssimatic_mv560_u_firmware*cpe:2.3:o:siemens:simatic_mv560_u_firmware:*:*:*:*:*:*:*:*
siemenssimatic_mv560_u-cpe:2.3:h:siemens:simatic_mv560_u:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
siemens	simatic_mv540_h_firmware	*	cpe:2.3:o:siemens:simatic_mv540_h_firmware::::::::
siemens	simatic_mv540_h	-	cpe:2.3:h:siemens:simatic_mv540_h:-:::::::*
siemens	simatic_mv540_s_firmware	*	cpe:2.3:o:siemens:simatic_mv540_s_firmware::::::::
siemens	simatic_mv540_s	-	cpe:2.3:h:siemens:simatic_mv540_s:-:::::::*
siemens	simatic_mv550_h_firmware	*	cpe:2.3:o:siemens:simatic_mv550_h_firmware::::::::
siemens	simatic_mv550_h	-	cpe:2.3:h:siemens:simatic_mv550_h:-:::::::*
siemens	simatic_mv550_s_firmware	*	cpe:2.3:o:siemens:simatic_mv550_s_firmware::::::::
siemens	simatic_mv550_s	-	cpe:2.3:h:siemens:simatic_mv550_s:-:::::::*
siemens	simatic_mv560_u_firmware	*	cpe:2.3:o:siemens:simatic_mv560_u_firmware::::::::
siemens	simatic_mv560_u	-	cpe:2.3:h:siemens:simatic_mv560_u:-:::::::*

Rows per page:

1-10 of 121

CNA Affected

[
  {
    "product": "SIMATIC MV540 H",
    "vendor": "Siemens",
    "versions": [
      {
        "status": "affected",
        "version": "All versions < V3.3"
      }
    ]
  },
  {
    "product": "SIMATIC MV540 S",
    "vendor": "Siemens",
    "versions": [
      {
        "status": "affected",
        "version": "All versions < V3.3"
      }
    ]
  },
  {
    "product": "SIMATIC MV550 H",
    "vendor": "Siemens",
    "versions": [
      {
        "status": "affected",
        "version": "All versions < V3.3"
      }
    ]
  },
  {
    "product": "SIMATIC MV550 S",
    "vendor": "Siemens",
    "versions": [
      {
        "status": "affected",
        "version": "All versions < V3.3"
      }
    ]
  },
  {
    "product": "SIMATIC MV560 U",
    "vendor": "Siemens",
    "versions": [
      {
        "status": "affected",
        "version": "All versions < V3.3"
      }
    ]
  },
  {
    "product": "SIMATIC MV560 X",
    "vendor": "Siemens",
    "versions": [
      {
        "status": "affected",
        "version": "All versions < V3.3"
      }
    ]
  }
]

References

cert-portal.siemens.com/productcert/pdf/ssa-348662.pdf

Social References

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

AI Score

7.5

Confidence

High

EPSS

0.002

Percentile

59.7%

JSON

Related for CVE-2022-33138