Rewterz Threat Advisory – ICS: Siemens SIMATIC Ident MV420 and MV440 Families Multiple Vulnerabilities
June 13, 2019Rewterz Threat advisory – ICS: Siemens LOGO!8 Devices Multiple Vulnerabilities
June 13, 2019Rewterz Threat Advisory – ICS: Siemens SIMATIC Ident MV420 and MV440 Families Multiple Vulnerabilities
June 13, 2019Rewterz Threat advisory – ICS: Siemens LOGO!8 Devices Multiple Vulnerabilities
June 13, 2019Severity
High
Analysis Summary
CVE-2019-6580
An attacker with network access to Port 80/TCP could change device properties without authorization.
CVE-2019-6581
An attacker with network access to Port 80/TCP could change user roles without proper authorization.
CVE-2019-6582
An attacker with network access to Port 80/TCP can change user-defined event properties without proper authorization.
Impact
- Improper Authorization
- Incorrect User Management
- Missing Authorization
Affected Vendors
Siemens
Affected Products
Siveillance VMS
Remediation
Updates can be found at: