#VU25262 Information disclosure in Siemens OZW672 and Siemens OZW772 - CVE-2019-13941

Cybersecurity Help s.r.o.

Published: 2020-02-12

Vulnerability identifier: #VU25262

Vulnerability risk: Medium

CVSSv4.0: 2.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2019-13941

CWE-ID: CWE-200

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Siemens OZW672
Hardware solutions / Security hardware applicances
Siemens OZW772
Hardware solutions / Security hardware applicances

Vendor: Siemens

Description

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due to the OZW web server uses predictable path names for project files that legitimately authenticated users have created by using the application’s export function. A remote attacker can access a specific uniform resource locator on the web server and download a project file without prior authentication.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

Siemens OZW672: before 10.0

Siemens OZW772: before 10.0

External links
https://cert-portal.siemens.com/productcert/pdf/ssa-986695.pdf

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Information disclosure in Siemens OZW Web Server