cnvd - cnvd-2023-48559

cnvd-2023-48559

Vulnerability from cnvd

Title: Siemens SIMATIC WinCC使用过时的函数漏洞

Description:

SIMATIC NET PC软件是一个单独销售的软件产品，实现了SIMATIC NET的通信产品。SIMATIC PCS 7是一个集散控制系统(DCS)，集成了SIMATIC WinCC、SIMATIC Batch、SIMATIC Route control、OpenPCS 7等组件。SIMATIC WinCC是一个监控和数据采集(SCADA)系统。SINAUT Software ST7sc通过OPC将SINAUT ST7站连接到HMI，SCADA和办公应用程序。SIPLUS extreme products专为在极端条件下可靠运行而设计，并基于SIMATIC，LOGO!，SITOP，SINAMICS，SIMOTION，SCALANCE或其他设备。

Siemens SIMATIC WinCC存在使用过时的函数漏洞，该漏洞源于默认使用传统的OPC服务(OPC DA(数据访问)，OPC HDA(历史数据访问)和OPC AE(告警和事件))。这些服务是在Windows ActiveX和DCOM机制之上设计的，并未实现最先进的内容认证和加密安全机制。目前没有详细漏洞细节提供。

Severity: 中

Patch Name: Siemens SIMATIC WinCC使用过时的函数漏洞的补丁

Patch Description:

Formal description:

厂商已发布了漏洞修复程序，请及时关注更新： https://cert-portal.siemens.com/productcert/html/ssa-508677.html

Reference: https://cert-portal.siemens.com/productcert/html/ssa-508677.html

Impacted products

Name
['Siemens SIMATIC WinCC <V8.0', 'Siemens SIMATIC NET PC Software V14', 'Siemens SIMATIC NET PC Software V15', 'Siemens SIMATIC PCS 7 V8.2', 'Siemens SIMATIC PCS 7 V9.0', 'Siemens SIMATIC PCS 7 V9.1', 'Siemens SINAUT Software ST7sc']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2023-28829"
    }
  },
  "description": "SIMATIC NET PC\u8f6f\u4ef6\u662f\u4e00\u4e2a\u5355\u72ec\u9500\u552e\u7684\u8f6f\u4ef6\u4ea7\u54c1\uff0c\u5b9e\u73b0\u4e86SIMATIC NET\u7684\u901a\u4fe1\u4ea7\u54c1\u3002SIMATIC PCS 7\u662f\u4e00\u4e2a\u96c6\u6563\u63a7\u5236\u7cfb\u7edf(DCS)\uff0c\u96c6\u6210\u4e86SIMATIC WinCC\u3001SIMATIC Batch\u3001SIMATIC Route control\u3001OpenPCS 7\u7b49\u7ec4\u4ef6\u3002SIMATIC WinCC\u662f\u4e00\u4e2a\u76d1\u63a7\u548c\u6570\u636e\u91c7\u96c6(SCADA)\u7cfb\u7edf\u3002SINAUT Software ST7sc\u901a\u8fc7OPC\u5c06SINAUT ST7\u7ad9\u8fde\u63a5\u5230HMI\uff0cSCADA\u548c\u529e\u516c\u5e94\u7528\u7a0b\u5e8f\u3002SIPLUS extreme products\u4e13\u4e3a\u5728\u6781\u7aef\u6761\u4ef6\u4e0b\u53ef\u9760\u8fd0\u884c\u800c\u8bbe\u8ba1\uff0c\u5e76\u57fa\u4e8eSIMATIC\uff0cLOGO!\uff0cSITOP\uff0cSINAMICS\uff0cSIMOTION\uff0cSCALANCE\u6216\u5176\u4ed6\u8bbe\u5907\u3002\n\nSiemens SIMATIC WinCC\u5b58\u5728\u4f7f\u7528\u8fc7\u65f6\u7684\u51fd\u6570\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u9ed8\u8ba4\u4f7f\u7528\u4f20\u7edf\u7684OPC\u670d\u52a1(OPC DA(\u6570\u636e\u8bbf\u95ee)\uff0cOPC HDA(\u5386\u53f2\u6570\u636e\u8bbf\u95ee)\u548cOPC AE(\u544a\u8b66\u548c\u4e8b\u4ef6))\u3002\u8fd9\u4e9b\u670d\u52a1\u662f\u5728Windows ActiveX\u548cDCOM\u673a\u5236\u4e4b\u4e0a\u8bbe\u8ba1\u7684\uff0c\u5e76\u672a\u5b9e\u73b0\u6700\u5148\u8fdb\u7684\u5185\u5bb9\u8ba4\u8bc1\u548c\u52a0\u5bc6\u5b89\u5168\u673a\u5236\u3002\u76ee\u524d\u6ca1\u6709\u8be6\u7ec6\u6f0f\u6d1e\u7ec6\u8282\u63d0\u4f9b\u3002",
  "formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u4e86\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttps://cert-portal.siemens.com/productcert/html/ssa-508677.html",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2023-48559",
  "openTime": "2023-06-14",
  "patchDescription": "SIMATIC NET PC\u8f6f\u4ef6\u662f\u4e00\u4e2a\u5355\u72ec\u9500\u552e\u7684\u8f6f\u4ef6\u4ea7\u54c1\uff0c\u5b9e\u73b0\u4e86SIMATIC NET\u7684\u901a\u4fe1\u4ea7\u54c1\u3002SIMATIC PCS 7\u662f\u4e00\u4e2a\u96c6\u6563\u63a7\u5236\u7cfb\u7edf(DCS)\uff0c\u96c6\u6210\u4e86SIMATIC WinCC\u3001SIMATIC Batch\u3001SIMATIC Route control\u3001OpenPCS 7\u7b49\u7ec4\u4ef6\u3002SIMATIC WinCC\u662f\u4e00\u4e2a\u76d1\u63a7\u548c\u6570\u636e\u91c7\u96c6(SCADA)\u7cfb\u7edf\u3002SINAUT Software ST7sc\u901a\u8fc7OPC\u5c06SINAUT ST7\u7ad9\u8fde\u63a5\u5230HMI\uff0cSCADA\u548c\u529e\u516c\u5e94\u7528\u7a0b\u5e8f\u3002SIPLUS extreme products\u4e13\u4e3a\u5728\u6781\u7aef\u6761\u4ef6\u4e0b\u53ef\u9760\u8fd0\u884c\u800c\u8bbe\u8ba1\uff0c\u5e76\u57fa\u4e8eSIMATIC\uff0cLOGO!\uff0cSITOP\uff0cSINAMICS\uff0cSIMOTION\uff0cSCALANCE\u6216\u5176\u4ed6\u8bbe\u5907\u3002\r\n\r\nSiemens SIMATIC WinCC\u5b58\u5728\u4f7f\u7528\u8fc7\u65f6\u7684\u51fd\u6570\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u9ed8\u8ba4\u4f7f\u7528\u4f20\u7edf\u7684OPC\u670d\u52a1(OPC DA(\u6570\u636e\u8bbf\u95ee)\uff0cOPC HDA(\u5386\u53f2\u6570\u636e\u8bbf\u95ee)\u548cOPC AE(\u544a\u8b66\u548c\u4e8b\u4ef6))\u3002\u8fd9\u4e9b\u670d\u52a1\u662f\u5728Windows ActiveX\u548cDCOM\u673a\u5236\u4e4b\u4e0a\u8bbe\u8ba1\u7684\uff0c\u5e76\u672a\u5b9e\u73b0\u6700\u5148\u8fdb\u7684\u5185\u5bb9\u8ba4\u8bc1\u548c\u52a0\u5bc6\u5b89\u5168\u673a\u5236\u3002\u76ee\u524d\u6ca1\u6709\u8be6\u7ec6\u6f0f\u6d1e\u7ec6\u8282\u63d0\u4f9b\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Siemens SIMATIC WinCC\u4f7f\u7528\u8fc7\u65f6\u7684\u51fd\u6570\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": [
      "Siemens SIMATIC WinCC \u003cV8.0",
      "Siemens SIMATIC NET PC Software V14",
      "Siemens SIMATIC NET PC Software V15",
      "Siemens SIMATIC PCS 7 V8.2",
      "Siemens SIMATIC PCS 7 V9.0",
      "Siemens SIMATIC PCS 7 V9.1",
      "Siemens SINAUT Software ST7sc"
    ]
  },
  "referenceLink": "https://cert-portal.siemens.com/productcert/html/ssa-508677.html",
  "serverity": "\u4e2d",
  "submitTime": "2023-06-14",
  "title": "Siemens SIMATIC WinCC\u4f7f\u7528\u8fc7\u65f6\u7684\u51fd\u6570\u6f0f\u6d1e"
}

CVE-2023-28829 (GCVE-0-2023-28829)

Vulnerability from cvelistv5

Published

2023-06-13 08:17

Modified

2025-01-03 01:52

Severity ?

3.9 (Low) - CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:L/E:P/RL:O/RC:C

CWE

CWE-477 - Use of Obsolete Function

Summary

A vulnerability has been identified in SIMATIC NET PC Software V14 (All versions), SIMATIC NET PC Software V15 (All versions), SIMATIC PCS 7 V8.2 (All versions), SIMATIC PCS 7 V9.0 (All versions), SIMATIC PCS 7 V9.1 (All versions), SIMATIC WinCC (All versions < V8.0), SINAUT Software ST7sc (All versions). Before SIMATIC WinCC V8, legacy OPC services (OPC DA (Data Access), OPC HDA (Historical Data Access), and OPC AE (Alarms & Events)) were used per default. These services were designed on top of the Windows ActiveX and DCOM mechanisms and do not implement state-of-the-art security mechanisms for authentication and encryption of contents.

References

▼	URL	Tags
	https://cert-portal.siemens.com/productcert/pdf/ssa-508677.pdf

Impacted products

Vendor

Product

Version

▼

Siemens

SIMATIC NET PC Software V14

Version: All versions

Siemens	SIMATIC NET PC Software V15	Version: All versions
Siemens	SIMATIC PCS 7 V8.2	Version: All versions
Siemens	SIMATIC PCS 7 V9.0	Version: All versions
Siemens	SIMATIC PCS 7 V9.1	Version: All versions
Siemens	SIMATIC WinCC	Version: All versions < V8.0
Siemens	SINAUT Software ST7sc	Version: All versions

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T13:51:38.624Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-508677.pdf"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2023-28829",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-01-03T01:45:58.400145Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-01-03T01:52:55.603Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unknown",
          "product": "SIMATIC NET PC Software V14",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIMATIC NET PC Software V15",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIMATIC PCS 7 V8.2",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIMATIC PCS 7 V9.0",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIMATIC PCS 7 V9.1",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIMATIC WinCC",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions \u003c V8.0"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SINAUT Software ST7sc",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A vulnerability has been identified in SIMATIC NET PC Software V14 (All versions), SIMATIC NET PC Software V15 (All versions), SIMATIC PCS 7 V8.2 (All versions), SIMATIC PCS 7 V9.0 (All versions), SIMATIC PCS 7 V9.1 (All versions), SIMATIC WinCC (All versions \u003c V8.0), SINAUT Software ST7sc (All versions). Before SIMATIC WinCC V8, legacy OPC services (OPC DA (Data Access), OPC HDA (Historical Data Access), and OPC AE (Alarms \u0026 Events)) were used per default. These\r\nservices were designed on top of the Windows ActiveX and DCOM mechanisms and do not implement state-of-the-art security mechanisms for authentication and encryption of contents."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "baseScore": 3.9,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:L/E:P/RL:O/RC:C",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-477",
              "description": "CWE-477: Use of Obsolete Function",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2023-06-13T08:17:07.989Z",
        "orgId": "cec7a2ec-15b4-4faf-bd53-b40f371f3a77",
        "shortName": "siemens"
      },
      "references": [
        {
          "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-508677.pdf"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "cec7a2ec-15b4-4faf-bd53-b40f371f3a77",
    "assignerShortName": "siemens",
    "cveId": "CVE-2023-28829",
    "datePublished": "2023-06-13T08:17:07.989Z",
    "dateReserved": "2023-03-24T15:17:29.558Z",
    "dateUpdated": "2025-01-03T01:52:55.603Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted