CVE-2018-13814 — Vulnetix

CVE-2018-13814 PUBLISHED CVSS 8.800000190734863 HIGH

A vulnerability has been identified in SIMATIC HMI Comfort Panels 4" - 22" (All versions < V14), SIMATIC HMI Comfort Outdoor Panels 7" & 15" (All versions < V14), SIMATIC HMI KTP Mobile Panels KTP400F, KTP700, KTP700F, KTP900 and KTP900F (All versions < V14), SIMATIC WinCC Runtime Advanced (All versions < V14), SIMATIC WinCC Runtime Professional (All versions < V14), SIMATIC WinCC (TIA Portal) (All versions < V14), SIMATIC HMI Classic Devices (TP/MP/OP/MP Mobile Panel) (All versions). The integrated web server (port 80/tcp and port 443/tcp) of the affected devices could allow an attacker to inject HTTP headers. An attacker must trick a valid user who is authenticated to the device into clicking on a malicious link to exploit the vulnerability. At the time of advisory publication no public exploitation of this security vulnerability was known.

EPSS 0.43% · 62.9th percentile

Risk Scores

CVSS 3.0

8.800000190734863

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS Score

0.43%

62.9th percentile

Affected Products

Vendor	Product	Versions
siemens	simatic_hmi_ktp_mobile_panels_ktp700f_firmware	0
siemens	simatic_hmi_comfort_panels_firmware	0
siemens	simatic_hmi_comfort_outdoor_panels_firmware	0
siemens	simatic_hmi_mp_firmware
siemens	simatic_wincc_\(tia_portal\)	0
siemens	simatic_hmi_tp_firmware
Siemens AG	SIMATIC HMI Comfort Panels 4" - 22", SIMATIC HMI Comfort Outdoor Panels 7" & 15", SIMATIC HMI KTP Mobile Panels KTP400F, KTP700, KTP700F, KTP900 und KTP900F, SIMATIC WinCC Runtime Advanced, SIMATIC WinCC Runtime Professional, SIMATIC WinCC (TIA Portal), SIMATIC HMI Classic Devices (TP/MP/OP/MP Mobile Panel)	, , SIMATIC HMI Classic Devices (TP/MP/OP/MP Mobile Panel) : All versions
siemens	simatic_wincc_runtime	0, 0
siemens	simatic_hmi_op_firmware
siemens	simatic_hmi_ktp_mobile_panels_ktp700_firmware	0
siemens	simatic_hmi_ktp_mobile_panels_ktp900f_firmware	0
siemens	simatic_hmi_ktp_mobile_panels_ktp900_firmware	0
siemens	simatic_hmi_ktp_mobile_panels_ktp400f_firmware	0

Exploit Intelligence

105931 (circl)
https://cert-portal.siemens.com/productcert/pdf/ssa-944083.pdf (circl)

Timeline

Nov 13, 2018 CVE Published
Apr 14, 2021 EPSS Score
Jun 23, 2021 EPSS Score
Aug 24, 2021 EPSS Score
Oct 26, 2021 EPSS Score
Dec 27, 2021 EPSS Score
Feb 28, 2022 EPSS Score
May 2, 2022 EPSS Score
Jul 3, 2022 EPSS Score
Sep 5, 2022 EPSS Score
Nov 6, 2022 EPSS Score
Jan 8, 2023 EPSS Score

References

Open in Interactive Console →