cnvd - cnvd-2024-35107

cnvd-2024-35107

Vulnerability from cnvd

Title: Siemens Omnivise T3000 Application Server敏感信息明文存储漏洞

Description:

Omnivise T3000是一种分布式控制系统，主要用于化石燃料和大型可再生能源发电厂。

Siemens Omnivise T3000 Application Server存在敏感信息明文存储漏洞，该漏洞是由于受影响的设备在没有足够保护的情况下存储初始系统凭据。攻击者可利用该漏洞检索凭据，从而导致机密性丢失，使攻击者能够在受影响的网络内横向移动。

Severity: 中

Patch Name: Siemens Omnivise T3000 Application Server敏感信息明文存储漏洞的补丁

Patch Description:

Omnivise T3000是一种分布式控制系统，主要用于化石燃料和大型可再生能源发电厂。

Siemens Omnivise T3000 Application Server存在敏感信息明文存储漏洞，该漏洞是由于受影响的设备在没有足够保护的情况下存储初始系统凭据。攻击者可利用该漏洞检索凭据，从而导致机密性丢失，使攻击者能够在受影响的网络内横向移动。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description:

用户可参考如下供应商提供的安全公告获得补丁信息： https://cert-portal.siemens.com/productcert/html/ssa-857368.html

Reference: https://cert-portal.siemens.com/productcert/html/ssa-857368.html

Impacted products

Name
['Siemens Omnivise T3000 Application Server', 'Siemens Omnivise T3000 Domain Controller', 'Siemens Omnivise T3000 Network Intrusion Detection System (NIDS)', 'Siemens Omnivise T3000 Product Data Management (PDM)', 'Siemens Omnivise T3000 Security Server', 'Siemens Omnivise T3000 Terminal Server', 'Siemens Omnivise T3000 Thin Client', 'Siemens Omnivise T3000 Whitelisting Server']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2024-38877"
    }
  },
  "description": "Omnivise T3000\u662f\u4e00\u79cd\u5206\u5e03\u5f0f\u63a7\u5236\u7cfb\u7edf\uff0c\u4e3b\u8981\u7528\u4e8e\u5316\u77f3\u71c3\u6599\u548c\u5927\u578b\u53ef\u518d\u751f\u80fd\u6e90\u53d1\u7535\u5382\u3002\n\nSiemens Omnivise T3000 Application Server\u5b58\u5728\u654f\u611f\u4fe1\u606f\u660e\u6587\u5b58\u50a8\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u662f\u7531\u4e8e\u53d7\u5f71\u54cd\u7684\u8bbe\u5907\u5728\u6ca1\u6709\u8db3\u591f\u4fdd\u62a4\u7684\u60c5\u51b5\u4e0b\u5b58\u50a8\u521d\u59cb\u7cfb\u7edf\u51ed\u636e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u68c0\u7d22\u51ed\u636e\uff0c\u4ece\u800c\u5bfc\u81f4\u673a\u5bc6\u6027\u4e22\u5931\uff0c\u4f7f\u653b\u51fb\u8005\u80fd\u591f\u5728\u53d7\u5f71\u54cd\u7684\u7f51\u7edc\u5185\u6a2a\u5411\u79fb\u52a8\u3002",
  "formalWay": "\u7528\u6237\u53ef\u53c2\u8003\u5982\u4e0b\u4f9b\u5e94\u5546\u63d0\u4f9b\u7684\u5b89\u5168\u516c\u544a\u83b7\u5f97\u8865\u4e01\u4fe1\u606f\uff1a\r\nhttps://cert-portal.siemens.com/productcert/html/ssa-857368.html",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2024-35107",
  "openTime": "2024-08-12",
  "patchDescription": "Omnivise T3000\u662f\u4e00\u79cd\u5206\u5e03\u5f0f\u63a7\u5236\u7cfb\u7edf\uff0c\u4e3b\u8981\u7528\u4e8e\u5316\u77f3\u71c3\u6599\u548c\u5927\u578b\u53ef\u518d\u751f\u80fd\u6e90\u53d1\u7535\u5382\u3002\r\n\r\nSiemens Omnivise T3000 Application Server\u5b58\u5728\u654f\u611f\u4fe1\u606f\u660e\u6587\u5b58\u50a8\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u662f\u7531\u4e8e\u53d7\u5f71\u54cd\u7684\u8bbe\u5907\u5728\u6ca1\u6709\u8db3\u591f\u4fdd\u62a4\u7684\u60c5\u51b5\u4e0b\u5b58\u50a8\u521d\u59cb\u7cfb\u7edf\u51ed\u636e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u68c0\u7d22\u51ed\u636e\uff0c\u4ece\u800c\u5bfc\u81f4\u673a\u5bc6\u6027\u4e22\u5931\uff0c\u4f7f\u653b\u51fb\u8005\u80fd\u591f\u5728\u53d7\u5f71\u54cd\u7684\u7f51\u7edc\u5185\u6a2a\u5411\u79fb\u52a8\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Siemens Omnivise T3000 Application Server\u654f\u611f\u4fe1\u606f\u660e\u6587\u5b58\u50a8\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": [
      "Siemens Omnivise T3000 Application Server",
      "Siemens Omnivise T3000 Domain Controller",
      "Siemens Omnivise T3000 Network Intrusion Detection System (NIDS)",
      "Siemens Omnivise T3000 Product Data Management (PDM)",
      "Siemens Omnivise T3000 Security Server",
      "Siemens Omnivise T3000 Terminal Server",
      "Siemens Omnivise T3000 Thin Client",
      "Siemens Omnivise T3000 Whitelisting Server"
    ]
  },
  "referenceLink": "https://cert-portal.siemens.com/productcert/html/ssa-857368.html",
  "serverity": "\u4e2d",
  "submitTime": "2024-08-12",
  "title": "Siemens Omnivise T3000 Application Server\u654f\u611f\u4fe1\u606f\u660e\u6587\u5b58\u50a8\u6f0f\u6d1e"
}

CVE-2024-38877 (GCVE-0-2024-38877)

Vulnerability from cvelistv5

Published

2024-08-02 10:36

Modified

2024-08-13 07:54

Severity ?

8.2 (High) - CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H/E:P/RL:O/RC:C
8.3 (High) - CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:H/SI:H/SA:H

CWE

CWE-312 - Cleartext Storage of Sensitive Information

Summary

A vulnerability has been identified in Omnivise T3000 Application Server R9.2 (All versions), Omnivise T3000 Domain Controller R9.2 (All versions), Omnivise T3000 Network Intrusion Detection System (NIDS) R9.2 (All versions), Omnivise T3000 Product Data Management (PDM) R9.2 (All versions), Omnivise T3000 R8.2 SP3 (All versions), Omnivise T3000 R8.2 SP4 (All versions), Omnivise T3000 Security Server R9.2 (All versions), Omnivise T3000 Terminal Server R9.2 (All versions), Omnivise T3000 Thin Client R9.2 (All versions), Omnivise T3000 Whitelisting Server R9.2 (All versions). The affected devices stores initial system credentials without sufficient protection. An attacker with remote shell access or physical access could retrieve the credentials leading to confidentiality loss allowing the attacker to laterally move within the affected network.

References

▼	URL	Tags
	https://cert-portal.siemens.com/productcert/html/ssa-857368.html

Impacted products

Vendor

Product

Version

▼

Siemens

Omnivise T3000 Application Server R9.2

Version: 0 < *

Siemens	Omnivise T3000 Domain Controller R9.2	Version: 0 < *
Siemens	Omnivise T3000 Network Intrusion Detection System (NIDS) R9.2	Version: 0 < *
Siemens	Omnivise T3000 Product Data Management (PDM) R9.2	Version: 0 < *
Siemens	Omnivise T3000 R8.2 SP3	Version: 0 < *
Siemens	Omnivise T3000 R8.2 SP4	Version: 0 < *
Siemens	Omnivise T3000 Security Server R9.2	Version: 0 < *
Siemens	Omnivise T3000 Terminal Server R9.2	Version: 0 < *
Siemens	Omnivise T3000 Thin Client R9.2	Version: 0 < *
Siemens	Omnivise T3000 Whitelisting Server R9.2	Version: 0 < *

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "affected": [
          {
            "cpes": [
              "cpe:2.3:a:siemens:omnivise_t3000_application_server:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "omnivise_t3000_application_server",
            "vendor": "siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:a:siemens:omnivise_t3000_domain_controller:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "omnivise_t3000_domain_controller",
            "vendor": "siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:a:siemens:omnivise_t3000_nids:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "omnivise_t3000_nids",
            "vendor": "siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:a:siemens:omnivise_t3000_pdim:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "omnivise_t3000_pdim",
            "vendor": "siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:a:siemens:omnivise_t3000_security_server:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "omnivise_t3000_security_server",
            "vendor": "siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:a:siemens:omnivise_t3000_terminal_server:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "omnivise_t3000_terminal_server",
            "vendor": "siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:a:siemens:omnivise_t3000_thin_client:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "omnivise_t3000_thin_client",
            "vendor": "siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:a:siemens:omnivise_t3000_whitelisting_server:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "omnivise_t3000_whitelisting_server",
            "vendor": "siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          }
        ],
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-38877",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-08-02T15:42:49.638111Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-08-02T15:55:27.565Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unknown",
          "product": "Omnivise T3000 Application Server R9.2",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "Omnivise T3000 Domain Controller R9.2",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "Omnivise T3000 Network Intrusion Detection System (NIDS) R9.2",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "Omnivise T3000 Product Data Management (PDM) R9.2",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "Omnivise T3000 R8.2 SP3",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "Omnivise T3000 R8.2 SP4",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "Omnivise T3000 Security Server R9.2",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "Omnivise T3000 Terminal Server R9.2",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "Omnivise T3000 Thin Client R9.2",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "Omnivise T3000 Whitelisting Server R9.2",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A vulnerability has been identified in Omnivise T3000 Application Server R9.2 (All versions), Omnivise T3000 Domain Controller R9.2 (All versions), Omnivise T3000 Network Intrusion Detection System (NIDS) R9.2 (All versions), Omnivise T3000 Product Data Management (PDM) R9.2 (All versions), Omnivise T3000 R8.2 SP3 (All versions), Omnivise T3000 R8.2 SP4 (All versions), Omnivise T3000 Security Server R9.2 (All versions), Omnivise T3000 Terminal Server R9.2 (All versions), Omnivise T3000 Thin Client R9.2 (All versions), Omnivise T3000 Whitelisting Server R9.2 (All versions). The affected devices stores initial system credentials without sufficient protection.  An attacker with remote shell access or physical access could retrieve the credentials leading to confidentiality loss allowing the attacker to laterally move within the affected network."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "baseScore": 8.2,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H/E:P/RL:O/RC:C",
            "version": "3.1"
          }
        },
        {
          "cvssV4_0": {
            "baseScore": 8.3,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:H/SI:H/SA:H",
            "version": "4.0"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-312",
              "description": "CWE-312: Cleartext Storage of Sensitive Information",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-08-13T07:54:13.668Z",
        "orgId": "cec7a2ec-15b4-4faf-bd53-b40f371f3a77",
        "shortName": "siemens"
      },
      "references": [
        {
          "url": "https://cert-portal.siemens.com/productcert/html/ssa-857368.html"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "cec7a2ec-15b4-4faf-bd53-b40f371f3a77",
    "assignerShortName": "siemens",
    "cveId": "CVE-2024-38877",
    "datePublished": "2024-08-02T10:36:18.219Z",
    "dateReserved": "2024-06-21T08:28:10.678Z",
    "dateUpdated": "2024-08-13T07:54:13.668Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted