CVE-2023-23588

A vulnerability has been identified in SIMATIC IPC1047 All versions, SIMATIC IPC1047E All versions with maxView Storage Manager 4.09.00.25611 on Windows, SIMATIC IPC647D All versions, SIMATIC IPC647E All versions with maxView Storage Manager 4.09.00.25611 on Windows, SIMATIC IPC847D All versions,...

The vulnerability of the storage manager Adaptec Maxview for industrial computers SIMATIC IPC1047, SIMATIC IPC1047E, SIMATIC IPC647D, and SIMATIC IPC647E allows attackers to carry out “man-in-the-middle” attacks.

The vulnerability of the data storage manager Adaptec Maxview for industrial computers SIMATIC IPC1047, SIMATIC IPC1047E, SIMATIC IPC647D, and SIMATIC IPC647E is related to the use of a non-unique TLS certificate. Exploiting this vulnerability allows attackers to carry out “man-in-the-middle”...

CVE-2023-23588

A vulnerability has been identified in SIMATIC IPC1047 All versions, SIMATIC IPC1047E All versions with maxView Storage Manager 4.09.00.25611 on Windows, SIMATIC IPC647D All versions, SIMATIC IPC647E All versions with maxView Storage Manager 4.09.00.25611 on Windows, SIMATIC IPC847D All versions,...

Design/Logic Flaw

A vulnerability has been identified in SIMATIC IPC1047 All versions, SIMATIC IPC1047E All versions with maxView Storage Manager 4.09.00.25611 on Windows, SIMATIC IPC647D All versions, SIMATIC IPC647E All versions with maxView Storage Manager 4.09.00.25611 on Windows, SIMATIC IPC847D All versions,...

CVE-2023-23588

CVE-2023-23588 affects Siemens SIMATIC IPC1047/IPC1047E/IPC647D/IPC647E/IPC847D/IPC847E. Root cause: Adaptec maxView uses a non-unique TLS certificate across installations, enabling local attackers to decrypt traffic and perform man-in-the-middle changes between the browser and the local applicat...