CVE-2013-6920

Siemens SINAMICS S/G controllers with firmware before 4.6.11 do not require authentication for FTP and TELNET sessions, which allows remote attackers to bypass intended access restrictions via TCP traffic to port (1) 21 or (2) 23.

CVSS v2.0 10.0 HIGH

10.0^/10

CVSS v2.0 : HIGH

Vector : AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 10.0 / Impact : 10.0

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://www.siemens.com/innovation/pool/de/forschungsfelder/siemens_security_advisory_ssa-742938.pdf	Vendor Advisory
http://ics-cert.us-cert.gov/advisories/ICSA-13-338-01	US Government Resource
https://cert-portal.siemens.com/productcert/pdf/ssa-742938.pdf

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:siemens:sinamics_s\/g_family_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:siemens:sinamics_s120:-:::::::*
	cpe:2.3:h:siemens:sinamics_s120cm:-:::::::*
	cpe:2.3:h:siemens:sinamics_s150:-:::::::*
	cpe:2.3:h:siemens:sinamics_g110d:-:::::::*
	cpe:2.3:h:siemens:sinamics_g130:-:::::::*
	cpe:2.3:h:siemens:sinamics_g180:-:::::::*
	cpe:2.3:h:siemens:sinamics_g120p:-:::::::*
	cpe:2.3:h:siemens:sinamics_g120d:-:::::::*
	cpe:2.3:h:siemens:sinamics_g120c:-:::::::*
	cpe:2.3:h:siemens:sinamics_g120:-:::::::*
	cpe:2.3:h:siemens:sinamics_g110:-:::::::*
	cpe:2.3:h:siemens:sinamics_g150:-:::::::*
	cpe:2.3:h:siemens:sinamics_s110:-:::::::*

Information

Published : 2013-12-07 00:55

Updated : 2020-02-10 15:15

NVD link : CVE-2013-6920

Mitre link : CVE-2013-6920

JSON object : View

Products Affected

siemens

sinamics_g120c
sinamics_g130
sinamics_g120
sinamics_s120
sinamics_g120p
sinamics_g110
sinamics_s\/g_family_firmware
sinamics_g120d
sinamics_s120cm
sinamics_g110d
sinamics_s150
sinamics_s110
sinamics_g150
sinamics_g180

CWE

CWE-287

Improper Authentication

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://www.siemens.com/innovation/pool/de/forschungsfelder/siemens_security_advisory_ssa-742938.pdf", "name": "http://www.siemens.com/innovation/pool/de/forschungsfelder/siemens_security_advisory_ssa-742938.pdf", "tags": ["Vendor Advisory"], "refsource": "CONFIRM"}, {"url": "http://ics-cert.us-cert.gov/advisories/ICSA-13-338-01", "name": "http://ics-cert.us-cert.gov/advisories/ICSA-13-338-01", "tags": ["US Government Resource"], "refsource": "MISC"}, {"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-742938.pdf", "name": "https://cert-portal.siemens.com/productcert/pdf/ssa-742938.pdf", "tags": [], "refsource": "CONFIRM"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Siemens SINAMICS S/G controllers with firmware before 4.6.11 do not require authentication for FTP and TELNET sessions, which allows remote attackers to bypass intended access restrictions via TCP traffic to port (1) 21 or (2) 23."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-287"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2013-6920", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 10.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "severity": "HIGH", "impactScore": 10.0, "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2013-12-07T00:55Z", "configurations": {"nodes": [{"children": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:o:siemens:sinamics_s\\/g_family_firmware:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "4.6"}]}, {"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:h:siemens:sinamics_s120:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:siemens:sinamics_s120cm:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:siemens:sinamics_s150:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:siemens:sinamics_g110d:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:siemens:sinamics_g130:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:siemens:sinamics_g180:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:siemens:sinamics_g120p:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:siemens:sinamics_g120d:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:siemens:sinamics_g120c:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:siemens:sinamics_g120:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:siemens:sinamics_g110:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:siemens:sinamics_g150:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:siemens:sinamics_s110:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "operator": "AND", "cpe_match": []}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2020-02-10T15:15Z"}