Siemens SIMATIC CP Cleartext Storage of Sensitive Information (CVE-2021-33716)

A vulnerability has been identified in SIMATIC CP 1543-1 incl. SIPLUS variants All versions V3.0, SIMATIC CP 1545-1 All versions V1.1. An attacker with access to the subnet of the affected device could retrieve sensitive information stored in cleartext. This plugin only works with Tenable.ot...

CVE-2021-33716

creationtimestamp| type| source ---|---|--- 2021-09-14 14:21:11+00:00| seen| https://t.me/cibsecurity/28787...

CVE-2021-33716

The CVE-2021-33716 issue affects Siemens SIMATIC CP 1543-1 (incl. SIPLUS variants) and CP 1545-1. Affected versions: CP 1543-1 before v3.0 and CP 1545-1 before v1.1. Root cause: cleartext storage of sensitive information that can be retrieved by an attacker with subnet access. Impact: exposure of...

Siemens SIMATIC CP (Update A)

1. EXECUTIVE SUMMARY CVSS v3 6.5 ATTENTION: Exploitable remotely/low attack complexity Vendor: Siemens Equipment: SIMATIC CP 1543-1 incl. SIPLUS variants and SIMATIC CP 1545-1 Vulnerability: Cleartext Storage of Sensitive Information 2. UPDATE INFORMATION This updated advisory is a follow-up to...