Severity: HIGH
Analysis Summary
Following vulnerabilities are found in Siemens CP1604 and CP1616:
CVE-2018-13808 – CLEARTEXT TRANSMISSION OF SENSITIVE INFORMATION An attacker with network access to Port 23/TCP could extract internal communication data or cause a denial-of-service condition.
CVE-2018-13809 – IMPROPER NEUTRALIZATION OF INPUT DURING WEB PAGE GENERATION (‘CROSS-SITE SCRIPTING’) The integrated web server of the affected CP devices could allow cross-site scripting (XSS) attacks if unsuspecting users are tricked into following a malicious link.
CVE-2018-13810 – CROSS-SITE REQUEST FORGERY The integrated configuration web server of the affected CP devices could allow a cross-site request forgery (CSRF) attack if an unsuspecting user is tricked into accessing a malicious link.
Impact
Affected Products
CP 1604
CP 1616
All versions prior to v2.8
Remediation