XXE Vulnerability in Siemens SIMATIC Products and OPC Foundation UA .NET Sample Code
CVE-2017-12069

8.2HIGH

Key Information:

Vendor
Siemens
Status
Simatic Pcs7
Wincc
Vendor
CVE Published:
30 August 2017

Summary

An XML External Entity (XXE) vulnerability has been discovered in the OPC Foundation UA .NET Sample Code and various Siemens SIMATIC products. This vulnerability impacts versions prior to 2017-03-21 for the sample code and Local Discovery Server (LDS) before version 1.03.367. Attackers can exploit this vulnerability by sending specifically crafted packets to the OPC Discovery Server on port 4840/tcp. This could lead to unauthorized access to resources present on the local network, posing significant security risks to affected installations and compromising system integrity.

References

https://opcfoundation-onlineapplications.org/faq/Security...
x_refsource_CONFIRM
http://www.securitytracker.com/id/1039510
vdb-entryx_refsource_SECTRACK
https://www.siemens.com/cert/pool/cert/siemens_security_a...
x_refsource_CONFIRM

CVSS V3.1

Score:
8.2
Severity:
HIGH
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.