Cleartext transmission of sensitive information in CP1604 and CP1616

#VU17737 Cleartext transmission of sensitive information in CP1604 and CP1616

Published: 2019-02-18

Vulnerability identifier: #VU17737

Vulnerability risk: Low

CVSSv3.1: 7.9 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2018-13808

CWE-ID: CWE-319

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
CP1604
Server applications / SCADA systems
CP1616
Server applications / SCADA systems

Vendor: Siemens

Description

The vulnerability allows a remote attacker to obtain potentially sensitive information or cause DoS condition.

The vulnerability exists due to cleartext transmission of sensitive information. A remote attacker with network access to Port 23/TCP can extract internal communication data or cause a denial-of-service condition.

Mitigation
Update the affected products to version 2.8.

Vulnerable software versions

CP1604: 1.0 - 2.7.2

CP1616: 1.0 - 2.7.2

External links
http://cert-portal.siemens.com/productcert/pdf/ssa-559174.pdf

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in Siemens CP1604 and CP1616