Sign-up

ID

VAR-201501-0129


CVE

CVE-2015-1048


TITLE

Siemens SIMATIC S7-1200 Open redirection vulnerability

Trust: 1.0

sources: IVD: a7de07ca-2351-11e6-abef-000c29c66e3d // IVD: c34e083e-b586-4c33-8980-e28b0b61b39f // CNVD: CNVD-2015-00585

DESCRIPTION

Open redirect vulnerability in the integrated web server on Siemens SIMATIC S7-1200 CPU devices with firmware before 4.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors. Supplementary information : CWE Vulnerability type by CWE-601: URL Redirection to Untrusted Site ( Open redirect ) Has been identified. http://cwe.mitre.org/data/definitions/601.htmlAny user by a third party Web You may be redirected to a site and run a phishing attack. The Siemens SIMATIC S7-1200 is a modular PLC controller. Siemens SIMATIC S7-1200 CPU is prone to an open-redirection vulnerability because it fails to properly sanitize user-supplied input. An attacker can leverage this issue to conduct phishing attacks; other attacks are possible

Trust: 2.97

sources: NVD: CVE-2015-1048 // JVNDB: JVNDB-2015-001207 // CNVD: CNVD-2015-00585 // BID: 72282 // IVD: a7de07ca-2351-11e6-abef-000c29c66e3d // IVD: c34e083e-b586-4c33-8980-e28b0b61b39f // VULHUB: VHN-79008 // VULMON: CVE-2015-1048

IOT TAXONOMY

category:['ICS']sub_category: -

Trust: 1.0

sources: IVD: a7de07ca-2351-11e6-abef-000c29c66e3d // IVD: c34e083e-b586-4c33-8980-e28b0b61b39f // CNVD: CNVD-2015-00585

AFFECTED PRODUCTS

vendor:siemensmodel:simatic s7 1200 cpuscope:lteversion:4.0

Trust: 1.0

vendor:siemensmodel:simatic s7-1200 cpuscope: - version: -

Trust: 0.8

vendor:siemensmodel:simatic s7-1200 cpuscope:ltversion:4.1

Trust: 0.8

vendor:siemensmodel:simatic s7-1200scope:ltversion:4.1

Trust: 0.6

vendor:siemensmodel:simatic s7 1200 cpuscope:eqversion:4.0

Trust: 0.6

vendor:simatic s7 1200 cpumodel: - scope:eqversion:*

Trust: 0.4

vendor:siemensmodel:simatic s7-1200 cpuscope:eqversion:4.0

Trust: 0.3

vendor:siemensmodel:simatic s7-1200 cpuscope:neversion:4.1

Trust: 0.3

sources: IVD: a7de07ca-2351-11e6-abef-000c29c66e3d // IVD: c34e083e-b586-4c33-8980-e28b0b61b39f // CNVD: CNVD-2015-00585 // BID: 72282 // JVNDB: JVNDB-2015-001207 // CNNVD: CNNVD-201501-478 // NVD: CVE-2015-1048

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2015-1048
value: MEDIUM

Trust: 1.0

NVD: CVE-2015-1048
value: MEDIUM

Trust: 0.8

CNVD: CNVD-2015-00585
value: MEDIUM

Trust: 0.6

CNNVD: CNNVD-201501-478
value: MEDIUM

Trust: 0.6

IVD: a7de07ca-2351-11e6-abef-000c29c66e3d
value: MEDIUM

Trust: 0.2

IVD: c34e083e-b586-4c33-8980-e28b0b61b39f
value: MEDIUM

Trust: 0.2

VULHUB: VHN-79008
value: MEDIUM

Trust: 0.1

VULMON: CVE-2015-1048
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2015-1048
severity: MEDIUM
baseScore: 4.3
vectorString: AV:N/AC:M/AU:N/C:N/I:P/A:N
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: 8.6
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.9

CNVD: CNVD-2015-00585
severity: MEDIUM
baseScore: 4.3
vectorString: AV:N/AC:M/AU:N/C:N/I:P/A:N
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: 8.6
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

IVD: a7de07ca-2351-11e6-abef-000c29c66e3d
severity: MEDIUM
baseScore: 4.3
vectorString: AV:N/AC:M/AU:N/C:N/I:P/A:N
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: 8.6
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.9 [IVD]

Trust: 0.2

IVD: c34e083e-b586-4c33-8980-e28b0b61b39f
severity: MEDIUM
baseScore: 4.3
vectorString: AV:N/AC:M/AU:N/C:N/I:P/A:N
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: 8.6
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.9 [IVD]

Trust: 0.2

VULHUB: VHN-79008
severity: MEDIUM
baseScore: 4.3
vectorString: AV:N/AC:M/AU:N/C:N/I:P/A:N
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: 8.6
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: IVD: a7de07ca-2351-11e6-abef-000c29c66e3d // IVD: c34e083e-b586-4c33-8980-e28b0b61b39f // CNVD: CNVD-2015-00585 // VULHUB: VHN-79008 // VULMON: CVE-2015-1048 // JVNDB: JVNDB-2015-001207 // CNNVD: CNNVD-201501-478 // NVD: CVE-2015-1048

PROBLEMTYPE DATA

problemtype:NVD-CWE-Other

Trust: 1.0

problemtype:CWE-Other

Trust: 0.8

sources: JVNDB: JVNDB-2015-001207 // NVD: CVE-2015-1048

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201501-478

TYPE

other

Trust: 0.6

sources: CNNVD: CNNVD-201501-478

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2015-001207

PATCH
title:SSA-597212url:http://www.siemens.com/innovation/pool/de/forschungsfelder/siemens_security_advisory_ssa-597212.pdf
Trust: 0.8
sources:
            
            
            JVNDB: JVNDB-2015-001207

EXTERNAL IDS
db:NVDid:CVE-2015-1048
Trust: 3.9
db:SIEMENSid:SSA-597212
Trust: 2.4
db:CNNVDid:CNNVD-201501-478
Trust: 1.1
db:CNVDid:CNVD-2015-00585
Trust: 1.0
db:BIDid:72282
Trust: 1.0
db:JVNDBid:JVNDB-2015-001207
Trust: 0.8
db:SECUNIAid:62233
Trust: 0.6
db:ICS CERTid:ICSA-15-022-01
Trust: 0.4
db:IVDid:A7DE07CA-2351-11E6-ABEF-000C29C66E3D
Trust: 0.2
db:IVDid:C34E083E-B586-4C33-8980-E28B0B61B39F
Trust: 0.2
db:VULHUBid:VHN-79008
Trust: 0.1
db:VULMONid:CVE-2015-1048
Trust: 0.1
sources:
            
            
            IVD: a7de07ca-2351-11e6-abef-000c29c66e3d // 
            
            
            
            IVD: c34e083e-b586-4c33-8980-e28b0b61b39f // 
            
            
            
            CNVD: CNVD-2015-00585 // 
            
            
            
            VULHUB: VHN-79008 // 
            
            
            
            VULMON: CVE-2015-1048 // 
            
            
            
            BID: 72282 // 
            
            
            
            JVNDB: JVNDB-2015-001207 // 
            
            
            
            CNNVD: CNNVD-201501-478 // 
            
            
            
            NVD: CVE-2015-1048

REFERENCES
url:http://www.siemens.com/innovation/pool/de/forschungsfelder/siemens_security_advisory_ssa-597212.pdf
Trust: 2.4
url:https://cert-portal.siemens.com/productcert/pdf/ssa-597212.pdf
Trust: 1.8
url:http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2015-1048
Trust: 1.4
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-1048
Trust: 0.8
url:http://secunia.com/advisories/62233
Trust: 0.6
url:http://support.automation.siemens.com/ww/llisapi.dll?func=cslib.csinfo&lang=en&objid=106200276&caller=view 
Trust: 0.3
url:http://subscriber.communications.siemens.com/
Trust: 0.3
url:https://ics-cert.us-cert.gov/advisories/icsa-15-022-01 
Trust: 0.3
url:https://cwe.mitre.org/data/definitions/.html
Trust: 0.1
url:http://tools.cisco.com/security/center/viewalert.x?alertid=37135
Trust: 0.1
url:https://nvd.nist.gov
Trust: 0.1
url:https://ics-cert.us-cert.gov/advisories/icsa-15-022-01
Trust: 0.1
sources:
            
            
            CNVD: CNVD-2015-00585 // 
            
            
            
            VULHUB: VHN-79008 // 
            
            
            
            VULMON: CVE-2015-1048 // 
            
            
            
            BID: 72282 // 
            
            
            
            JVNDB: JVNDB-2015-001207 // 
            
            
            
            CNNVD: CNNVD-201501-478 // 
            
            
            
            NVD: CVE-2015-1048

CREDITS
Ralf Spenneberg, Hendrik Schwartke, and Maik Brüggemann
Trust: 0.3
sources:
            
            
            BID: 72282

SOURCES
db:IVDid:a7de07ca-2351-11e6-abef-000c29c66e3d
db:IVDid:c34e083e-b586-4c33-8980-e28b0b61b39f
db:CNVDid:CNVD-2015-00585
db:VULHUBid:VHN-79008
db:VULMONid:CVE-2015-1048
db:BIDid:72282
db:JVNDBid:JVNDB-2015-001207
db:CNNVDid:CNNVD-201501-478
db:NVDid:CVE-2015-1048

LAST UPDATE DATE
2025-04-12T23:27:40.441000+00:00

SOURCES UPDATE DATE
db:CNVDid:CNVD-2015-00585date:2015-01-26T00:00:00
db:VULHUBid:VHN-79008date:2020-02-10T00:00:00
db:VULMONid:CVE-2015-1048date:2020-02-10T00:00:00
db:BIDid:72282date:2015-01-22T00:00:00
db:JVNDBid:JVNDB-2015-001207date:2015-01-26T00:00:00
db:CNNVDid:CNNVD-201501-478date:2020-02-11T00:00:00
db:NVDid:CVE-2015-1048date:2025-04-12T10:46:40.837

SOURCES RELEASE DATE
db:IVDid:a7de07ca-2351-11e6-abef-000c29c66e3ddate:2015-01-26T00:00:00
db:IVDid:c34e083e-b586-4c33-8980-e28b0b61b39fdate:2015-01-26T00:00:00
db:CNVDid:CNVD-2015-00585date:2015-01-26T00:00:00
db:VULHUBid:VHN-79008date:2015-01-21T00:00:00
db:VULMONid:CVE-2015-1048date:2015-01-21T00:00:00
db:BIDid:72282date:2015-01-22T00:00:00
db:JVNDBid:JVNDB-2015-001207date:2015-01-26T00:00:00
db:CNNVDid:CNNVD-201501-478date:2015-01-23T00:00:00
db:NVDid:CVE-2015-1048date:2015-01-21T17:59:02.293