Vulnerability identifier: #VU25262

Vulnerability risk: Medium

CVSSv3.1: 4.6 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C]

CVE-ID: CVE-2019-13941

CWE-ID: CWE-200

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Siemens OZW672
Hardware solutions / Security hardware applicances
Siemens OZW772
Hardware solutions / Security hardware applicances

Vendor: Siemens

Description

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due to the OZW web server uses predictable path names for project files that legitimately authenticated users have created by using the application’s export function. A remote attacker can access a specific uniform resource locator on the web server and download a project file without prior authentication.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

Siemens OZW672: All versions

Siemens OZW772: All versions

---

External links
http://cert-portal.siemens.com/productcert/pdf/ssa-986695.pdf

---

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.