Lucene search

[email protected]NVD:CVE-2020-25238

HistoryFeb 09, 2021 - 5:15 p.m.

CVE-2020-25238

2021-02-0917:15:13

CWE-284

CWE-427

[email protected]

web.nvd.nist.gov

vulnerability

pcs neo

tia portal

local attacker

execute code

system privileges

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS

Percentile

0.4%

JSON

A vulnerability has been identified in PCS neo (Administration Console) (All versions < V3.1), TIA Portal (V15, V15.1 and V16). Manipulating certain files in specific folders could allow a local attacker to execute code with SYSTEM privileges. The security vulnerability could be exploited by an attacker with a valid account and limited access rights on the system.

Affected configurations

Nvd

Node

siemenssimatic_process_control_system_neoRange<3.1

siemenstotally_integrated_automation_portalMatch15

siemenstotally_integrated_automation_portalMatch15.1

siemenstotally_integrated_automation_portalMatch16

VendorProductVersionCPE
siemenssimatic_process_control_system_neo*cpe:2.3:a:siemens:simatic_process_control_system_neo:*:*:*:*:*:*:*:*
siemenstotally_integrated_automation_portal15cpe:2.3:a:siemens:totally_integrated_automation_portal:15:*:*:*:*:*:*:*
siemenstotally_integrated_automation_portal15.1cpe:2.3:a:siemens:totally_integrated_automation_portal:15.1:*:*:*:*:*:*:*
siemenstotally_integrated_automation_portal16cpe:2.3:a:siemens:totally_integrated_automation_portal:16:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
siemens	simatic_process_control_system_neo	*	cpe:2.3:a:siemens:simatic_process_control_system_neo::::::::
siemens	totally_integrated_automation_portal	15	cpe:2.3:a:siemens:totally_integrated_automation_portal:15:::::::*
siemens	totally_integrated_automation_portal	15.1	cpe:2.3:a:siemens:totally_integrated_automation_portal:15.1:::::::*
siemens	totally_integrated_automation_portal	16	cpe:2.3:a:siemens:totally_integrated_automation_portal:16:::::::*

References

cert-portal.siemens.com/productcert/pdf/ssa-428051.pdf

us-cert.cisa.gov/ics/advisories/icsa-21-040-05

www.kb.cert.org/vuls/id/466044

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS

Percentile

0.4%

JSON

Related for NVD:CVE-2020-25238

ics1 prion1 cvelist1 cve1 cert1