Rewterz Threat Alert – Hidden Cobra’s Skype-Job Campaign Targeting Inter-Bank Networks
February 14, 2019Rewterz Threat Alert – New Molerats Suspected Attack in the Middle East
February 14, 2019Severity: HIGH
Analysis Summary
Following vulnerabilities are found in Siemens CP1604 and CP1616:
CVE-2018-13808 – CLEARTEXT TRANSMISSION OF SENSITIVE INFORMATION An attacker with network access to Port 23/TCP could extract internal communication data or cause a denial-of-service condition.
CVE-2018-13809 – IMPROPER NEUTRALIZATION OF INPUT DURING WEB PAGE GENERATION (‘CROSS-SITE SCRIPTING’) The integrated web server of the affected CP devices could allow cross-site scripting (XSS) attacks if unsuspecting users are tricked into following a malicious link.
CVE-2018-13810 – CROSS-SITE REQUEST FORGERY The integrated configuration web server of the affected CP devices could allow a cross-site request forgery (CSRF) attack if an unsuspecting user is tricked into accessing a malicious link.
Impact
- Denial of service
- Exposure of sensitive information
- Execution of arbitrary code
- Cross site request forgery
- Cross site scripting
Affected Products
CP 1604
CP 1616
All versions prior to v2.8
Remediation
- Do not click on any links sent from unknown senders.
- Disable the integrated server.
- Restrict access to the device to the internal or VPN network. Further restrict access to the web interface (80/TCP) and to the telnet port (23/TCP) to trusted IP addresses if possible.
- Update to version 2.8. https://www.siemens.com/industrialsecurity