This script is Copyright (C) 2015-2024 and is owned by Tenable, Inc. or an Affiliate thereof.SCADA_SIEMENS_TIA_MULTIPLE_VULNERABILITIES_SSA-315836.NBINSiemens SIMATIC STEP 7 (TIA Portal) < 1300.100.2501.1 Multiple Vulnerabilities (SSA-315836)
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.001 Low
EPSS
Percentile
49.2%
The remote host is running a version of Siemens SIMATIC STEP 7 (TIA Portal) prior to version 13 Service Pack 1 Update 1. It is, therefore, affected by multiple vulnerabilities :
-
An unspecified man-in-the-middle vulnerability allows remote attackers to intercept or modify Siemens industrial communications. (CVE-2015-1601)
-
An unspecified password hashing flaw allows local attackers with read access to TIA project files to reconstruct protection-level and web server passwords.
(CVE-2015-1602)
Binary data scada_siemens_tia_multiple_vulnerabilities_SSA-315836.nbin| Vendor | Product | Version | CPE |
|---|---|---|---|
| siemens | simatic_tiaportal | cpe:/a:siemens:simatic_tiaportal |
Related
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.001 Low
EPSS
Percentile
49.2%