#VU18818 Permissions, Privileges, and Access Controls in SIMATIC Ident MV440 and SIMATIC Ident MV420 - CVE-2019-10925
Published: June 18, 2019
Vulnerability identifier: #VU18818
Vulnerability risk: Medium
CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:L/SC:N/SI:N/SA:N/E:P/U:Green
CVE-ID: CVE-2019-10925
CWE-ID: CWE-264
Exploitation vector: Remote access
Exploit availability:
No public exploit available
Vulnerable software:
SIMATIC Ident MV440
SIMATIC Ident MV420
SIMATIC Ident MV440
SIMATIC Ident MV420
Software vendor:
Siemens
Siemens
Description
The vulnerability allows a remote attacker to escalate privileges on the system.
The vulnerability exists due to a flaw in the integrated webserver. A remote authenticated attacker can escalate privileges by sending specially crafted requests to the integrated webserver.
Remediation
Cybersecurity Help is currently unaware of any official solution to address this vulnerability.
Vendor's recommendation:
- By setting the DISA bit, changes to the project by logged-in users can be prevented
- Protect network access to affected devices.