November 20, 2023
Severity Medium Analysis Summary Agent Tesla is a very popular spyware Trojan built for the.NET framework. Since its initial appearance in 2014, this has been deployed […]
Rewterz Threat Advisory – Siemens SCALANCE W1750D Multiple Command Injection and Cross-Site Scripting Vulnerabilities
May 16, 2019Rewterz Threat Advisory – CVE-2019-11634 – Citrix Workspace / Receiver for Windows Remote Code Execution Vulnerability
May 16, 2019Rewterz Threat Advisory – Siemens SCALANCE W1750D Multiple Command Injection and Cross-Site Scripting Vulnerabilities
May 16, 2019Rewterz Threat Advisory – CVE-2019-11634 – Citrix Workspace / Receiver for Windows Remote Code Execution Vulnerability
May 16, 2019
Severity
Medium
Analysis Summary
CVE-2019-6572
The affected devices offer SNMP read/write capabilities with a hardcoded community string, which may allow an attacker to read/write variables over SNMP. This could compromise the confidentiality and integrity of the affected system.
CVE-2019-6576
An attacker with network access could potentially obtain a TLS session key and use it to decrypt TLS traffic. This could impact the confidentiality of communications between the device and a legitimate user.
CVE-2019-6577
The integrated web server could allow a cross-site scripting (XSS) attack if an attacker is able to modify certain device configuration settings via SNMP. This could impact confidentiality and integrity of the affected system.
Impact
- Use of Hard-coded Credentials
- Insufficient Protection of Credentials
- Cross-site Scripting
Affected Vendors
Siemens
Affected Products
- SIMATIC WinCC Runtime Advanced
- WinCC Runtime Professional
- WinCC (TIA Portal)
- HMI Panels
Remediation
Siemens has updates at for the following products:
https://support.industry.siemens.com/cs/ww/en/view/109763890/