Session Cookie Vulnerability in Siemens SCALANCE Modules
CVE-2016-7090

4MEDIUM

Key Information:

Vendor
Siemens
Status
Scalance M-800 Firmware
Vendor
CVE Published:
29 September 2016

Summary

The integrated web server on Siemens SCALANCE M-800 and S615 modules with firmware versions earlier than 4.02 lacks a crucial security feature: the 'secure' flag for session cookies during HTTPS connections. This oversight allows remote attackers to potentially capture these cookies by exploiting unprotected communications within HTTP sessions. Consequently, compromised session cookies can lead to unauthorized access, putting sensitive data and system integrity at risk.

References

https://ics-cert.us-cert.gov/advisories/ICSA-16-271-01
x_refsource_MISC
http://www.siemens.com/cert/pool/cert/siemens_security_ad...
x_refsource_CONFIRM
http://www.securityfocus.com/bid/93115
vdb-entryx_refsource_BID

CVSS V3.1

Score:
4
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
None
User Interaction:
None
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.