cnvd - cnvd-2018-18612

cnvd-2018-18612

Vulnerability from cnvd

Title: Siemens SCALANCE X Switches输入验证漏洞

Description:

Siemens SCALANCE X Switches是德国西门子(Siemens)公司的一款工业以太网交换机产品。

Siemens SCALANCE X Switches存在输入验证漏洞，允许具有网络访问权限的攻击者利用漏洞导致拒绝服务。

Severity: 高

Patch Name: Siemens SCALANCE X Switches输入验证漏洞的补丁

Patch Description:

Siemens SCALANCE X Switches是德国西门子(Siemens)公司的一款工业以太网交换机产品。

Siemens SCALANCE X Switches存在输入验证漏洞，允许具有网络访问权限的攻击者利用漏洞导致拒绝服务。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description:

用户可联系供应商获得补丁信息： https://support.industry.siemens.com/cs/us/en/view/109753720

Reference: https://ics-cert.us-cert.gov/advisories/ICSA-18-254-05

Impacted products

Name
['SIEMENS SCALANCE X414', 'SIEMENS SCALANCE X408 <4.0.0', 'SIEMENS SCALANCE X300 <4.0.0']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2018-13807"
    }
  },
  "description": "Siemens SCALANCE X Switches\u662f\u5fb7\u56fd\u897f\u95e8\u5b50(Siemens)\u516c\u53f8\u7684\u4e00\u6b3e\u5de5\u4e1a\u4ee5\u592a\u7f51\u4ea4\u6362\u673a\u4ea7\u54c1\u3002 \r\n\r\nSiemens SCALANCE X Switches\u5b58\u5728\u8f93\u5165\u9a8c\u8bc1\u6f0f\u6d1e\uff0c\u5141\u8bb8\u5177\u6709\u7f51\u7edc\u8bbf\u95ee\u6743\u9650\u7684\u653b\u51fb\u8005\u5229\u7528\u6f0f\u6d1e\u5bfc\u81f4\u62d2\u7edd\u670d\u52a1\u3002",
  "discovererName": "Siemens",
  "formalWay": "\u7528\u6237\u53ef\u8054\u7cfb\u4f9b\u5e94\u5546\u83b7\u5f97\u8865\u4e01\u4fe1\u606f\uff1a\r\nhttps://support.industry.siemens.com/cs/us/en/view/109753720",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2018-18612",
  "openTime": "2018-09-13",
  "patchDescription": "Siemens SCALANCE X Switches\u662f\u5fb7\u56fd\u897f\u95e8\u5b50(Siemens)\u516c\u53f8\u7684\u4e00\u6b3e\u5de5\u4e1a\u4ee5\u592a\u7f51\u4ea4\u6362\u673a\u4ea7\u54c1\u3002 \r\n\r\nSiemens SCALANCE X Switches\u5b58\u5728\u8f93\u5165\u9a8c\u8bc1\u6f0f\u6d1e\uff0c\u5141\u8bb8\u5177\u6709\u7f51\u7edc\u8bbf\u95ee\u6743\u9650\u7684\u653b\u51fb\u8005\u5229\u7528\u6f0f\u6d1e\u5bfc\u81f4\u62d2\u7edd\u670d\u52a1\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Siemens SCALANCE X Switches\u8f93\u5165\u9a8c\u8bc1\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": [
      "SIEMENS SCALANCE X414",
      "SIEMENS SCALANCE X408 \u003c4.0.0",
      "SIEMENS SCALANCE X300 \u003c4.0.0"
    ]
  },
  "referenceLink": "https://ics-cert.us-cert.gov/advisories/ICSA-18-254-05",
  "serverity": "\u9ad8",
  "submitTime": "2018-09-13",
  "title": "Siemens SCALANCE X Switches\u8f93\u5165\u9a8c\u8bc1\u6f0f\u6d1e"
}

CVE-2018-13807 (GCVE-0-2018-13807)

Vulnerability from cvelistv5

Published

2018-09-12 14:00

Modified

2024-09-17 00:37

Severity ?

CWE

CWE-20 - Improper Input Validation

Summary

A vulnerability has been identified in SCALANCE X300 (All versions < V4.0.0), SCALANCE X408 (All versions < V4.0.0), SCALANCE X414 (All versions). The web interface on port 443/tcp could allow an attacker to cause a Denial-of-Service condition by sending specially crafted packets to the web server. The device will automatically reboot, impacting network availability for other devices. An attacker must have network access to port 443/tcp to exploit the vulnerability. Neither valid credentials nor interaction by a legitimate user is required to exploit the vulnerability. There is no confidentiality or integrity impact, only availability is temporarily impacted. This vulnerability could be triggered by publicly available tools.

References

▼	URL	Tags
	https://ics-cert.us-cert.gov/advisories/ICSA-18-254-05	x_refsource_MISC
	http://www.securityfocus.com/bid/105331	vdb-entry, x_refsource_BID
	https://cert-portal.siemens.com/productcert/pdf/ssa-447396.pdf	x_refsource_CONFIRM

Impacted products

	Vendor	Product	Version
	Siemens AG	SCALANCE X300, SCALANCE X408, SCALANCE X414	Version: SCALANCE X300 : All versions < V4.0.0 Version: SCALANCE X408 : All versions < V4.0.0 Version: SCALANCE X414 : All versions

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T09:14:47.207Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://ics-cert.us-cert.gov/advisories/ICSA-18-254-05"
          },
          {
            "name": "105331",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/105331"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-447396.pdf"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "SCALANCE X300, SCALANCE X408, SCALANCE X414",
          "vendor": "Siemens AG",
          "versions": [
            {
              "status": "affected",
              "version": "SCALANCE X300 : All versions \u003c V4.0.0"
            },
            {
              "status": "affected",
              "version": "SCALANCE X408 : All versions \u003c V4.0.0"
            },
            {
              "status": "affected",
              "version": "SCALANCE X414 : All versions"
            }
          ]
        }
      ],
      "datePublic": "2018-09-11T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "A vulnerability has been identified in SCALANCE X300 (All versions \u003c V4.0.0), SCALANCE X408 (All versions \u003c V4.0.0), SCALANCE X414 (All versions). The web interface on port 443/tcp could allow an attacker to cause a Denial-of-Service condition by sending specially crafted packets to the web server. The device will automatically reboot, impacting network availability for other devices. An attacker must have network access to port 443/tcp to exploit the vulnerability. Neither valid credentials nor interaction by a legitimate user is required to exploit the vulnerability. There is no confidentiality or integrity impact, only availability is temporarily impacted. This vulnerability could be triggered by publicly available tools."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-20",
              "description": "CWE-20: Improper Input Validation",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-09-13T09:57:01",
        "orgId": "cec7a2ec-15b4-4faf-bd53-b40f371f3a77",
        "shortName": "siemens"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://ics-cert.us-cert.gov/advisories/ICSA-18-254-05"
        },
        {
          "name": "105331",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/105331"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-447396.pdf"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "productcert@siemens.com",
          "DATE_PUBLIC": "2018-09-11T00:00:00",
          "ID": "CVE-2018-13807",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "SCALANCE X300, SCALANCE X408, SCALANCE X414",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "SCALANCE X300 : All versions \u003c V4.0.0"
                          },
                          {
                            "version_value": "SCALANCE X408 : All versions \u003c V4.0.0"
                          },
                          {
                            "version_value": "SCALANCE X414 : All versions"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Siemens AG"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A vulnerability has been identified in SCALANCE X300 (All versions \u003c V4.0.0), SCALANCE X408 (All versions \u003c V4.0.0), SCALANCE X414 (All versions). The web interface on port 443/tcp could allow an attacker to cause a Denial-of-Service condition by sending specially crafted packets to the web server. The device will automatically reboot, impacting network availability for other devices. An attacker must have network access to port 443/tcp to exploit the vulnerability. Neither valid credentials nor interaction by a legitimate user is required to exploit the vulnerability. There is no confidentiality or integrity impact, only availability is temporarily impacted. This vulnerability could be triggered by publicly available tools."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-20: Improper Input Validation"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://ics-cert.us-cert.gov/advisories/ICSA-18-254-05",
              "refsource": "MISC",
              "url": "https://ics-cert.us-cert.gov/advisories/ICSA-18-254-05"
            },
            {
              "name": "105331",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/105331"
            },
            {
              "name": "https://cert-portal.siemens.com/productcert/pdf/ssa-447396.pdf",
              "refsource": "CONFIRM",
              "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-447396.pdf"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "cec7a2ec-15b4-4faf-bd53-b40f371f3a77",
    "assignerShortName": "siemens",
    "cveId": "CVE-2018-13807",
    "datePublished": "2018-09-12T14:00:00Z",
    "dateReserved": "2018-07-10T00:00:00",
    "dateUpdated": "2024-09-17T00:37:09.724Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted