Cross-Site Scripting Vulnerability in SCALANCE Switches by Siemens
CVE-2018-4842

4.8MEDIUM

Key Information:

Vendor: Siemens
Status: Scalance X-200irt Switch Family (incl. Siplus Net Variants); Scalance X-200rna Switch Family; Scalance X-300 Switch Family (incl. X408 And Siplus Net Variants)
Vendor: CVE Published:; 14 June 2018

Summary

A Cross-Site Scripting vulnerability has been detected in multiple families of Siemens SCALANCE switches. Specifically, if the HRP redundancy option is enabled, an authenticated attacker can exploit the configuration web server to store malicious script code. This script may execute in the browsers of users who visit the compromised site, leading to potential breaches of confidentiality, integrity, and availability. Although user interaction is required to trigger the exploit—where users need to visit a manipulated site—there has been no known public exploitation reported as of now. Siemens has acknowledged the issue and is providing mitigations for users to secure their systems.

Affected Version(s)

SCALANCE X-200IRT switch family (incl. SIPLUS NET variants) All versions < V5.4.1

SCALANCE X-200RNA switch family All versions < V3.2.7

SCALANCE X-300 switch family (incl. X408 and SIPLUS NET variants) All versions < V4.1.3

References

https://www.securityfocus.com/bid/104494

vdb-entry

https://cert-portal.siemens.com/productcert/pdf/ssa-48082...

CVSS V3.1

Score:

4.8

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

Required

Scope:

Changed

Timeline

Vulnerability published
Jun 14, 2018
Vulnerability Reserved
Jan 2, 2018