Detections
Analytics

Siemens SIMATIC HMI Panels and TIA Portal <= v15.1 Update 1 XSS (ICSA-19-134-09)

medium Nessus Network Monitor Plugin ID 720276

Synopsis

A cross-site scripting vulnerability has been identified in SIMATIC HMI Panels &lt; v15.1 Update 1, HMI Classic Devices (all versions), and TIA Portal &lt;= v15.1 Update 1.

Description

The integrated web server could allow Cross-Site Scripting (XSS) attacks if an attacker is able to modify particular parts of the device configuration via SNMP. The security vulnerability could be exploited by an attacker with network access to the affected system. Successful exploitation requires system privileges and user interaction. An attacker could use the vulnerability to compromise confidentiality and the integrity of the affected system.

Solution

Perform vendor recommended mitigations and apply available vendor upgrades.

See Also

https://www.us-cert.gov/ics/advisories/ICSA-19-134-09

Plugin Details

Severity: Medium

ID: 720276

Family: SCADA

Published: 7/31/2019

Updated: 9/30/2019

Risk Information

VPR

Risk Factor: Low

Score: 3.0

CVSS v2

Risk Factor: Low

Base Score: 3.5

Temporal Score: 2.6

Vector: CVSS2#AV:N/AC:M/Au:S/C:N/I:P/A:N

CVSS v3

Risk Factor: Medium

Base Score: 5.4

Temporal Score: 4.7

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

Patch Publication Date: 5/14/2019

Vulnerability Publication Date: 5/14/2019

Reference Information

CVE: CVE-2019-6577

BID: 108412