Vulnerability-Lookup

CVE-2020-28396 (GCVE-0-2020-28396)

Vulnerability from cvelistv5 – Published: 2020-12-14 21:05 – Updated: 2024-08-04 16:33

Summary

A vulnerability has been identified in SICAM A8000 CP-8000 (All versions < V16), SICAM A8000 CP-8021 (All versions < V16), SICAM A8000 CP-8022 (All versions < V16). A web server misconfiguration of the affected device can cause insecure ciphers usage by a user´s browser. An attacker in a privileged position could decrypt the communication and compromise confidentiality and integrity of the transmitted information.

Severity ?

No CVSS data available.

CWE

CWE-693 - Protection Mechanism Failure

Assigner

siemens

References

URL

GHSA-GW3G-78VP-6J8F

Vulnerability from github – Published: 2022-05-24 22:28 – Updated: 2022-08-07 00:00

Details

Severity ?

7.3 (High)


                  
                    CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2020-28396"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-327",
      "CWE-693"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2020-12-14T21:15:00Z",
    "severity": "HIGH"
  },
  "details": "A vulnerability has been identified in SICAM A8000 CP-8000 (All versions \u003c V16), SICAM A8000 CP-8021 (All versions \u003c V16), SICAM A8000 CP-8022 (All versions \u003c V16). A web server misconfiguration of the affected device can cause insecure ciphers usage by a user\u00b4s browser. An attacker in a privileged position could decrypt the communication and compromise confidentiality and integrity of the transmitted information.",
  "id": "GHSA-gw3g-78vp-6j8f",
  "modified": "2022-08-07T00:00:29Z",
  "published": "2022-05-24T22:28:40Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-28396"
    },
    {
      "type": "WEB",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-415783.pdf"
    },
    {
      "type": "WEB",
      "url": "https://www.zerodayinitiative.com/advisories/ZDI-21-062"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N",
      "type": "CVSS_V3"
    }
  ]
}

GSD-2020-28396

Vulnerability from gsd - Updated: 2023-12-13 01:22

Details

Aliases

CVE-2020-28396

Aliases

CVE-2020-28396

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2020-28396",
    "description": "A vulnerability has been identified in SICAM A8000 CP-8000 (All versions \u003c V16), SICAM A8000 CP-8021 (All versions \u003c V16), SICAM A8000 CP-8022 (All versions \u003c V16). A web server misconfiguration of the affected device can cause insecure ciphers usage by a user\u00b4s browser. An attacker in a privileged position could decrypt the communication and compromise confidentiality and integrity of the transmitted information.",
    "id": "GSD-2020-28396"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2020-28396"
      ],
      "details": "A vulnerability has been identified in SICAM A8000 CP-8000 (All versions \u003c V16), SICAM A8000 CP-8021 (All versions \u003c V16), SICAM A8000 CP-8022 (All versions \u003c V16). A web server misconfiguration of the affected device can cause insecure ciphers usage by a user\u00b4s browser. An attacker in a privileged position could decrypt the communication and compromise confidentiality and integrity of the transmitted information.",
      "id": "GSD-2020-28396",
      "modified": "2023-12-13T01:22:01.924560Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "productcert@siemens.com",
        "ID": "CVE-2020-28396",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "SICAM A8000 CP-8000",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "All versions \u003c V16"
                        }
                      ]
                    }
                  },
                  {
                    "product_name": "SICAM A8000 CP-8021",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "All versions \u003c V16"
                        }
                      ]
                    }
                  },
                  {
                    "product_name": "SICAM A8000 CP-8022",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "All versions \u003c V16"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "Siemens"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "A vulnerability has been identified in SICAM A8000 CP-8000 (All versions \u003c V16), SICAM A8000 CP-8021 (All versions \u003c V16), SICAM A8000 CP-8022 (All versions \u003c V16). A web server misconfiguration of the affected device can cause insecure ciphers usage by a user\u00b4s browser. An attacker in a privileged position could decrypt the communication and compromise confidentiality and integrity of the transmitted information."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "CWE-693: Protection Mechanism Failure"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://cert-portal.siemens.com/productcert/pdf/ssa-415783.pdf",
            "refsource": "MISC",
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-415783.pdf"
          },
          {
            "name": "https://www.zerodayinitiative.com/advisories/ZDI-21-062/",
            "refsource": "MISC",
            "url": "https://www.zerodayinitiative.com/advisories/ZDI-21-062/"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:siemens:sicam_a8000_cp-8000_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:siemens:sicam_a8000_cp-8000:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          },
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:siemens:sicam_a8000_cp-8021_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:siemens:sicam_a8000_cp-8021:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          },
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:siemens:sicam_a8000_cp-8022_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:siemens:sicam_a8000_cp-8022:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "productcert@siemens.com",
          "ID": "CVE-2020-28396"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "A vulnerability has been identified in SICAM A8000 CP-8000 (All versions \u003c V16), SICAM A8000 CP-8021 (All versions \u003c V16), SICAM A8000 CP-8022 (All versions \u003c V16). A web server misconfiguration of the affected device can cause insecure ciphers usage by a user\u00b4s browser. An attacker in a privileged position could decrypt the communication and compromise confidentiality and integrity of the transmitted information."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-327"
                },
                {
                  "lang": "en",
                  "value": "CWE-693"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "N/A",
              "refsource": "CONFIRM",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-415783.pdf"
            },
            {
              "name": "https://www.zerodayinitiative.com/advisories/ZDI-21-062/",
              "refsource": "MISC",
              "tags": [
                "Not Applicable"
              ],
              "url": "https://www.zerodayinitiative.com/advisories/ZDI-21-062/"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "acInsufInfo": false,
          "cvssV2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "SINGLE",
            "availabilityImpact": "NONE",
            "baseScore": 4.9,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:S/C:P/I:P/A:N",
            "version": "2.0"
          },
          "exploitabilityScore": 6.8,
          "impactScore": 4.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "MEDIUM",
          "userInteractionRequired": true
        },
        "baseMetricV3": {
          "cvssV3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 7.3,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "exploitabilityScore": 2.1,
          "impactScore": 5.2
        }
      },
      "lastModifiedDate": "2022-08-06T03:53Z",
      "publishedDate": "2020-12-14T21:15Z"
    }
  }
}

CERTFR-2020-AVI-800

Vulnerability from certfr_avis - Published: 2020-12-08 - Updated: 2020-12-08

De multiples vulnérabilités ont été découvertes dans les produits Siemens. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et un contournement de la politique de sécurité.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
Siemens	N/A	XHQ versions antérieures à 6.1
Siemens	N/A	SIMATIC ITC1900 V3.1 PRO toutes versions
Siemens	N/A	SIMATIC ITC2200 V3.1 PRO toutes versions
Siemens	N/A	LOGO! 8 BM (incl. SIPLUS variants) versions antérieures à 8.3
Siemens	N/A	SCALANCE X-200 switch family (incl. SIPLUSNET variants) versions antérieures à 5.2.3
Siemens	N/A	SIMATIC HMI Comfort Panels 4" - 22"(incl. SIPLUS variants) versions antérieures à la 16 sans le correctif numéro 3
Siemens	N/A	SCALANCE X-300 switch family (incl. SIPLUSNET variants) versions antérieures à 4.1.3
Siemens	N/A	RUGGEDCOM Win versions antérieures à 5.2
Siemens	N/A	SENTRON PAC3200 versions antérieures à 2.4.5
Siemens	N/A	SIMATIC ITC2200 V3.1 toutes versions
Siemens	N/A	SIMATIC S7-1500 Software Controller versions 20.8
Siemens	N/A	SICAM A8000 CP-8000 versions antérieures à 16
Siemens	N/A	SCALANCE X408 versions antérieures à V4.1.3
Siemens	N/A	LOGO! Soft Comfort versions antérieures à 8.3
Siemens	N/A	SIMATIC ITC1500 V3.1 toutes versions
Siemens	N/A	SICAM A8000 CP-8021 versions antérieures à 16
Siemens	N/A	SCALANCE X414 toutes versions
Siemens	N/A	SICAM A8000 CP-8022 versions antérieures à 16
Siemens	N/A	SENTRON PAC4200 versions antérieures à 2.0.1
Siemens	N/A	SCALANCE X-200IRT switch family (incl. SIPLUSNET variants) versions antérieures à 5.4.1
Siemens	N/A	SIRIUS 3RW5 communication module ModbusTCP toutes versions
Siemens	N/A	SIMATIC ITC1900 V3.1 toutes versions
Siemens	N/A	SCALANCE X-200RNA switch family versions antérieures à 3.2.6
Siemens	N/A	RFID 181EIP toutes versions
Siemens	N/A	SIMATIC HMI KTP Mobile Panels KTP400F,KTP700, KTP700F, KTP900 and KTP900F versions antérieures à la 16 sans le correctif numéro 3
Siemens	N/A	SIMATIC ET 200SP Open Controller(incl. SIPLUS variants) version 20.8
Siemens	N/A	SIMATIC HMI Comfort Outdoor Panels 7" & 15"(incl. SIPLUS variants) versions antérieures à la 16 sans le correctif numéro 3
Siemens	N/A	SIMATIC ITC1500 V3.1 PRO toutes versions
Siemens	N/A	SIMATIC RF182C toutes versions

References

Title

Publication Time

Tags

Bulletin de sécurité Siemens ssa-478893 du 8 décembre 2020	None	vendor-advisory
Bulletin de sécurité Siemens ssa-700697 du 8 décembre 2020	None	vendor-advisory
Bulletin de sécurité Siemens ssa-541017 du 8 décembre 2020	None	vendor-advisory
Bulletin de sécurité Siemens ssa-480824 du 8 décembre 2020	None	vendor-advisory
Bulletin de sécurité Siemens ssa-712690 du 8 décembre 2020	None	vendor-advisory
Bulletin de sécurité Siemens ssa-181018 du 8 décembre 2020	None	vendor-advisory
Bulletin de sécurité Siemens ssa-415783 du 8 décembre 2020	None	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "XHQ versions ant\u00e9rieures \u00e0 6.1",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC ITC1900 V3.1 PRO toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC ITC2200 V3.1 PRO toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "LOGO! 8 BM (incl. SIPLUS variants) versions ant\u00e9rieures \u00e0 8.3",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X-200 switch family (incl. SIPLUSNET variants) versions ant\u00e9rieures \u00e0 5.2.3",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC HMI Comfort Panels 4\" - 22\"(incl. SIPLUS variants) versions ant\u00e9rieures \u00e0 la 16 sans le correctif num\u00e9ro 3",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X-300 switch family (incl. SIPLUSNET variants) versions ant\u00e9rieures \u00e0 4.1.3",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "RUGGEDCOM Win versions ant\u00e9rieures \u00e0 5.2",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SENTRON PAC3200 versions ant\u00e9rieures \u00e0 2.4.5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC ITC2200 V3.1 toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC S7-1500 Software Controller versions 20.8",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SICAM A8000 CP-8000 versions ant\u00e9rieures \u00e0 16",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X408 versions ant\u00e9rieures \u00e0 V4.1.3",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "LOGO! Soft Comfort versions ant\u00e9rieures \u00e0 8.3",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC ITC1500 V3.1 toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SICAM A8000 CP-8021 versions ant\u00e9rieures \u00e0 16",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X414 toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SICAM A8000 CP-8022 versions ant\u00e9rieures \u00e0 16",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SENTRON PAC4200 versions ant\u00e9rieures \u00e0 2.0.1",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X-200IRT switch family (incl. SIPLUSNET variants) versions ant\u00e9rieures \u00e0 5.4.1",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIRIUS 3RW5 communication module ModbusTCP toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC ITC1900 V3.1 toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X-200RNA switch family versions ant\u00e9rieures \u00e0 3.2.6",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "RFID 181EIP toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC HMI KTP Mobile Panels KTP400F,KTP700, KTP700F, KTP900 and KTP900F versions ant\u00e9rieures \u00e0 la 16 sans le correctif num\u00e9ro 3",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC ET 200SP Open Controller(incl. SIPLUS variants) version 20.8",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC HMI Comfort Outdoor Panels 7\" \u0026 15\"(incl. SIPLUS variants) versions ant\u00e9rieures \u00e0 la 16 sans le correctif num\u00e9ro 3",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC ITC1500 V3.1 PRO toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC RF182C toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2019-8287",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-8287"
    },
    {
      "name": "CVE-2020-25231",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-25231"
    },
    {
      "name": "CVE-2020-13988",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-13988"
    },
    {
      "name": "CVE-2020-25230",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-25230"
    },
    {
      "name": "CVE-2020-28396",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-28396"
    },
    {
      "name": "CVE-2020-15796",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-15796"
    },
    {
      "name": "CVE-2019-15680",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-15680"
    },
    {
      "name": "CVE-2020-25235",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-25235"
    },
    {
      "name": "CVE-2018-4833",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-4833"
    },
    {
      "name": "CVE-2019-19289",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-19289"
    },
    {
      "name": "CVE-2019-19287",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-19287"
    },
    {
      "name": "CVE-2019-19283",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-19283"
    },
    {
      "name": "CVE-2020-25228",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-25228"
    },
    {
      "name": "CVE-2019-19286",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-19286"
    },
    {
      "name": "CVE-2019-15679",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-15679"
    },
    {
      "name": "CVE-2019-19285",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-19285"
    },
    {
      "name": "CVE-2020-25232",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-25232"
    },
    {
      "name": "CVE-2019-19288",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-19288"
    },
    {
      "name": "CVE-2019-19284",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-19284"
    },
    {
      "name": "CVE-2020-25233",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-25233"
    },
    {
      "name": "CVE-2020-25234",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-25234"
    },
    {
      "name": "CVE-2020-25229",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-25229"
    },
    {
      "name": "CVE-2019-15678",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-15678"
    }
  ],
  "initial_release_date": "2020-12-08T00:00:00",
  "last_revision_date": "2020-12-08T00:00:00",
  "links": [],
  "reference": "CERTFR-2020-AVI-800",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2020-12-08T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Injection de code indirecte \u00e0 distance (XSS)"
    },
    {
      "description": "Injection de requ\u00eates ill\u00e9gitimes par rebond (CSRF)"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits\nSiemens. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer\nune ex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de service \u00e0\ndistance et un contournement de la politique de s\u00e9curit\u00e9.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Siemens",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-478893 du 8 d\u00e9cembre 2020",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-478893.pdf"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-700697 du 8 d\u00e9cembre 2020",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-700697.pdf"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-541017 du 8 d\u00e9cembre 2020",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-541017.pdf"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-480824 du 8 d\u00e9cembre 2020",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-480824.pdf"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-712690 du 8 d\u00e9cembre 2020",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-712690.pdf"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-181018 du 8 d\u00e9cembre 2020",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-181018.pdf"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-415783 du 8 d\u00e9cembre 2020",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-415783.pdf"
    }
  ]
}

FKIE_CVE-2020-28396

Vulnerability from fkie_nvd - Published: 2020-12-14 21:15 - Updated: 2024-11-21 05:22

Severity ?

7.3 (High) - CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N

Summary

References

URL	Tags
productcert@siemens.com	https://cert-portal.siemens.com/productcert/pdf/ssa-415783.pdf	Vendor Advisory
productcert@siemens.com	https://www.zerodayinitiative.com/advisories/ZDI-21-062/	Not Applicable
af854a3a-2127-422b-91ae-364da2661108	https://cert-portal.siemens.com/productcert/pdf/ssa-415783.pdf	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	https://www.zerodayinitiative.com/advisories/ZDI-21-062/	Not Applicable

Impacted products

Vendor	Product	Version
siemens	sicam_a8000_cp-8000_firmware	*
siemens	sicam_a8000_cp-8000	-
siemens	sicam_a8000_cp-8021_firmware	*
siemens	sicam_a8000_cp-8021	-
siemens	sicam_a8000_cp-8022_firmware	*
siemens	sicam_a8000_cp-8022	-

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:siemens:sicam_a8000_cp-8000_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "54920AB7-5A34-499A-BF46-11A165AE60B4",
              "versionEndExcluding": "16",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:siemens:sicam_a8000_cp-8000:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "8DEF18ED-BF87-4CFA-A4BA-3387AC8964B3",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:siemens:sicam_a8000_cp-8021_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "193BC64A-AA97-42B1-9F80-C8DB9517C0DA",
              "versionEndExcluding": "16",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:siemens:sicam_a8000_cp-8021:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "65362A2F-DB6D-4D7F-87B5-10E18EE990F0",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:siemens:sicam_a8000_cp-8022_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "AD842813-A944-4F52-A0C8-C80FFEFF3B7E",
              "versionEndExcluding": "16",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:siemens:sicam_a8000_cp-8022:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "64D59FE8-03FD-4E5B-B7D2-47F31E98A187",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "A vulnerability has been identified in SICAM A8000 CP-8000 (All versions \u003c V16), SICAM A8000 CP-8021 (All versions \u003c V16), SICAM A8000 CP-8022 (All versions \u003c V16). A web server misconfiguration of the affected device can cause insecure ciphers usage by a user\u00b4s browser. An attacker in a privileged position could decrypt the communication and compromise confidentiality and integrity of the transmitted information."
    },
    {
      "lang": "es",
      "value": "Se ha identificado una vulnerabilidad en SICAM A8000 CP-8000 (Todas las versiones anteriores a V16), SICAM A8000 CP-8021 (Todas las versiones anteriores a V16), SICAM A8000 CP-8022 (Todas las versiones anteriores a V16).\u0026#xa0;Una configuraci\u00f3n inapropiada del servidor web del dispositivo afectado puede causar un uso de cifrado no seguro por parte del navegador del usuario.\u0026#xa0;Un atacante en una posici\u00f3n privilegiada podr\u00eda descifrar la comunicaci\u00f3n y comprometer la confidencialidad e integridad de la informaci\u00f3n transmitida"
    }
  ],
  "id": "CVE-2020-28396",
  "lastModified": "2024-11-21T05:22:43.117",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "SINGLE",
          "availabilityImpact": "NONE",
          "baseScore": 4.9,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:M/Au:S/C:P/I:P/A:N",
          "version": "2.0"
        },
        "exploitabilityScore": 6.8,
        "impactScore": 4.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": true
      }
    ],
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "NONE",
          "baseScore": 7.3,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "REQUIRED",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N",
          "version": "3.1"
        },
        "exploitabilityScore": 2.1,
        "impactScore": 5.2,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2020-12-14T21:15:21.067",
  "references": [
    {
      "source": "productcert@siemens.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-415783.pdf"
    },
    {
      "source": "productcert@siemens.com",
      "tags": [
        "Not Applicable"
      ],
      "url": "https://www.zerodayinitiative.com/advisories/ZDI-21-062/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-415783.pdf"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Not Applicable"
      ],
      "url": "https://www.zerodayinitiative.com/advisories/ZDI-21-062/"
    }
  ],
  "sourceIdentifier": "productcert@siemens.com",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-693"
        }
      ],
      "source": "productcert@siemens.com",
      "type": "Secondary"
    },
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-327"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

CNVD-2020-70926

Vulnerability from cnvd - Published: 2020-12-11

Title

SIEMENS SICAM A8000 RTUs SSL配置不安全漏洞

Description

SIEMENS SICAM A8000 RTUs（远程终端设备）系列是一个模块化设备系列，用于所有能源供应领域的远程控制和自动化应用。 SIEMENS SICAM A8000 RTUs存在安全漏洞。攻击者可利用漏洞解密通信，并损害传输信息的机密性和完整性。

Severity

高

Patch Name

Siemens SICAM A8000 RTUs SSL配置不安全漏洞的补丁

Patch Description

Siemens SICAM A8000 RTUs（远程终端设备）系列是一个模块化设备系列，用于所有能源供应领域的远程控制和自动化应用。 Siemens SICAM A8000 RTUs存在安全漏洞。攻击者可利用漏洞解密通信，并损害传输信息的机密性和完整性。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description

用户可参考如下供应商提供的安全公告获得补丁信息： https://cert-portal.siemens.com/productcert/pdf/ssa-415783.pdf

Reference

https://cert-portal.siemens.com/productcert/pdf/ssa-415783.pdf

Impacted products

Name
['SIEMENS SICAM A8000 CP-8000 < V16', 'SIEMENS SICAM A8000 CP-8022 < V16', 'SIEMENS SICAM A8000 CP-8021 < V16']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2020-28396"
    }
  },
  "description": "SIEMENS SICAM A8000 RTUs\uff08\u8fdc\u7a0b\u7ec8\u7aef\u8bbe\u5907\uff09\u7cfb\u5217\u662f\u4e00\u4e2a\u6a21\u5757\u5316\u8bbe\u5907\u7cfb\u5217\uff0c\u7528\u4e8e\u6240\u6709\u80fd\u6e90\u4f9b\u5e94\u9886\u57df\u7684\u8fdc\u7a0b\u63a7\u5236\u548c\u81ea\u52a8\u5316\u5e94\u7528\u3002\n\nSIEMENS SICAM A8000 RTUs\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u6f0f\u6d1e\u89e3\u5bc6\u901a\u4fe1\uff0c\u5e76\u635f\u5bb3\u4f20\u8f93\u4fe1\u606f\u7684\u673a\u5bc6\u6027\u548c\u5b8c\u6574\u6027\u3002",
  "formalWay": "\u7528\u6237\u53ef\u53c2\u8003\u5982\u4e0b\u4f9b\u5e94\u5546\u63d0\u4f9b\u7684\u5b89\u5168\u516c\u544a\u83b7\u5f97\u8865\u4e01\u4fe1\u606f\uff1a\r\nhttps://cert-portal.siemens.com/productcert/pdf/ssa-415783.pdf",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2020-70926",
  "openTime": "2020-12-11",
  "patchDescription": "Siemens SICAM A8000 RTUs\uff08\u8fdc\u7a0b\u7ec8\u7aef\u8bbe\u5907\uff09\u7cfb\u5217\u662f\u4e00\u4e2a\u6a21\u5757\u5316\u8bbe\u5907\u7cfb\u5217\uff0c\u7528\u4e8e\u6240\u6709\u80fd\u6e90\u4f9b\u5e94\u9886\u57df\u7684\u8fdc\u7a0b\u63a7\u5236\u548c\u81ea\u52a8\u5316\u5e94\u7528\u3002\r\n\r\nSiemens SICAM A8000 RTUs\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u6f0f\u6d1e\u89e3\u5bc6\u901a\u4fe1\uff0c\u5e76\u635f\u5bb3\u4f20\u8f93\u4fe1\u606f\u7684\u673a\u5bc6\u6027\u548c\u5b8c\u6574\u6027\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Siemens SICAM A8000 RTUs SSL\u914d\u7f6e\u4e0d\u5b89\u5168\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": [
      "SIEMENS SICAM A8000 CP-8000 \u003c V16",
      "SIEMENS SICAM A8000 CP-8022 \u003c V16",
      "SIEMENS SICAM A8000 CP-8021 \u003c V16"
    ]
  },
  "referenceLink": "https://cert-portal.siemens.com/productcert/pdf/ssa-415783.pdf",
  "serverity": "\u9ad8",
  "submitTime": "2020-12-08",
  "title": "SIEMENS SICAM A8000 RTUs SSL\u914d\u7f6e\u4e0d\u5b89\u5168\u6f0f\u6d1e"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2020-28396 (GCVE-0-2020-28396)

GHSA-GW3G-78VP-6J8F

GSD-2020-28396

CERTFR-2020-AVI-800

Solution

FKIE_CVE-2020-28396

CNVD-2020-70926

Tags

Sightings

Nomenclature