XXE Vulnerability in Siemens SIMATIC Products and OPC Foundation UA .NET Sample Code
CVE-2017-12069

8.2HIGH

Key Information:

Vendor

Siemens
Status
Simatic Pcs7
Wincc
Vendor
CVE Published:
30 August 2017

What is CVE-2017-12069?

An XML External Entity (XXE) vulnerability has been discovered in the OPC Foundation UA .NET Sample Code and various Siemens SIMATIC products. This vulnerability impacts versions prior to 2017-03-21 for the sample code and Local Discovery Server (LDS) before version 1.03.367. Attackers can exploit this vulnerability by sending specifically crafted packets to the OPC Discovery Server on port 4840/tcp. This could lead to unauthorized access to resources present on the local network, posing significant security risks to affected installations and compromising system integrity.

References

https://opcfoundation-onlineapplications.org/faq/Security...
x_refsource_CONFIRM
http://www.securitytracker.com/id/1039510
vdb-entryx_refsource_SECTRACK
https://www.siemens.com/cert/pool/cert/siemens_security_a...
x_refsource_CONFIRM

CVSS V3.1

Score:
8.2
Severity:
HIGH
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.