Cleartext transmission of sensitive information in SIMATIC Ident MV440 and SIMATIC Ident MV420

#VU18819 Cleartext transmission of sensitive information in SIMATIC Ident MV440 and SIMATIC Ident MV420

Published: 2019-06-18

Vulnerability identifier: #VU18819

Vulnerability risk: Medium

CVSSv3.1: 5 [CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N/E:P/RL:U/RC:C]

CVE-ID: CVE-2019-10926

CWE-ID: CWE-319

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
SIMATIC Ident MV440
Server applications / SCADA systems
SIMATIC Ident MV420
Server applications / SCADA systems

Vendor: Siemens

Description

The vulnerability allows a remote attacker to obtain a sensitive information on the system.

The vulnerability exists due to unencrypted communication with the device. A remote attacker in a privileged network position can obtain data transmitted between the device and the user.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

SIMATIC Ident MV440: 1.0

SIMATIC Ident MV420: 1.0

External links
http://cert-portal.siemens.com/productcert/pdf/ssa-816980.pdf

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.

Latest bulletins with this vulnerability

Multiple vulnerabilities in Siemens SIMATIC Ident MV420 and MV440 Families