Sign-up

ID

VAR-201808-0745


CVE

CVE-2018-11455


TITLE

Siemens Automation License Manager Arbitrary code execution vulnerability

Trust: 0.8

sources: IVD: e2f8fc70-39ab-11e9-aba5-000c29342cb1 // CNVD: CNVD-2018-18001

DESCRIPTION

A vulnerability has been identified in Automation License Manager 5 (All versions < 5.3.4.4), Automation License Manager 6 (All versions < 6.0.1). A directory traversal vulnerability could allow a remote attacker to move arbitrary files, which can result in code execution, compromising confidentiality, integrity and availability of the system. Successful exploitation requires a network connection to the affected device. The attacker does not need privileges or special conditions of the system, but user interaction is required. Automation License Manager Contains a path traversal vulnerability.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. The Siemens Automation License Manager is a Siemens system from Germany that handles remote and local certificates in HMI, SCADA and industrial products. An attacker can exploit these issues using directory-traversal characters ('../') to access or read arbitrary files that contain sensitive information or to access files outside of the restricted directory or obtain sensitive information and perform other attacks

Trust: 2.7

sources: NVD: CVE-2018-11455 // JVNDB: JVNDB-2018-008996 // CNVD: CNVD-2018-18001 // BID: 105114 // IVD: e2f8fc70-39ab-11e9-aba5-000c29342cb1 // VULHUB: VHN-121316

IOT TAXONOMY

category:['ICS']sub_category: -

Trust: 0.8

sources: IVD: e2f8fc70-39ab-11e9-aba5-000c29342cb1 // CNVD: CNVD-2018-18001

AFFECTED PRODUCTS

vendor:siemensmodel:automation license managerscope:gteversion:6.0

Trust: 1.0

vendor:siemensmodel:automation license managerscope:ltversion:6.0.1

Trust: 1.0

vendor:siemensmodel:automation license managerscope:gtversion:5.0

Trust: 1.0

vendor:siemensmodel:automation license managerscope:ltversion:5.3.4.4

Trust: 1.0

vendor:siemensmodel:automation license managerscope:eqversion:5.2

Trust: 0.9

vendor:siemensmodel:automation license managerscope:eqversion:5.1

Trust: 0.9

vendor:siemensmodel:automation license managerscope:ltversion:5 (5.3.4.4 )

Trust: 0.8

vendor:siemensmodel:automation license managerscope:ltversion:6 (6.0.1 )

Trust: 0.8

vendor:siemensmodel:automation license managerscope:eqversion:5.*<5.3.4.4

Trust: 0.6

vendor:siemensmodel:automation license managerscope:eqversion:6.*<6.0.1

Trust: 0.6

vendor:automation license managermodel: - scope:eqversion:*

Trust: 0.4

vendor:siemensmodel:automation license managerscope:eqversion:6.0

Trust: 0.3

vendor:siemensmodel:automation license managerscope:eqversion:5.3

Trust: 0.3

vendor:siemensmodel:automation license managerscope:neversion:6.0.1

Trust: 0.3

vendor:siemensmodel:automation license managerscope:neversion:5.3.4.4

Trust: 0.3

sources: IVD: e2f8fc70-39ab-11e9-aba5-000c29342cb1 // CNVD: CNVD-2018-18001 // BID: 105114 // JVNDB: JVNDB-2018-008996 // CNNVD: CNNVD-201808-239 // NVD: CVE-2018-11455

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2018-11455
value: HIGH

Trust: 1.0

NVD: CVE-2018-11455
value: HIGH

Trust: 0.8

CNVD: CNVD-2018-18001
value: HIGH

Trust: 0.6

CNNVD: CNNVD-201808-239
value: HIGH

Trust: 0.6

IVD: e2f8fc70-39ab-11e9-aba5-000c29342cb1
value: HIGH

Trust: 0.2

VULHUB: VHN-121316
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2018-11455
severity: MEDIUM
baseScore: 6.8
vectorString: AV:N/AC:M/AU:N/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 8.6
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

CNVD: CNVD-2018-18001
severity: HIGH
baseScore: 10.0
vectorString: AV:N/AC:L/AU:N/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 10.0
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

IVD: e2f8fc70-39ab-11e9-aba5-000c29342cb1
severity: HIGH
baseScore: 10.0
vectorString: AV:N/AC:L/AU:N/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 10.0
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.9 [IVD]

Trust: 0.2

VULHUB: VHN-121316
severity: MEDIUM
baseScore: 6.8
vectorString: AV:N/AC:M/AU:N/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 8.6
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2018-11455
baseSeverity: HIGH
baseScore: 8.8
vectorString: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: REQUIRED
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 2.8
impactScore: 5.9
version: 3.0

Trust: 1.8

sources: IVD: e2f8fc70-39ab-11e9-aba5-000c29342cb1 // CNVD: CNVD-2018-18001 // VULHUB: VHN-121316 // JVNDB: JVNDB-2018-008996 // CNNVD: CNNVD-201808-239 // NVD: CVE-2018-11455

PROBLEMTYPE DATA

problemtype:CWE-22

Trust: 1.9

sources: VULHUB: VHN-121316 // JVNDB: JVNDB-2018-008996 // NVD: CVE-2018-11455

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201808-239

TYPE

Path traversal

Trust: 0.8

sources: IVD: e2f8fc70-39ab-11e9-aba5-000c29342cb1 // CNNVD: CNNVD-201808-239

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2018-008996

PATCH
title:SSA-920962url:https://cert-portal.siemens.com/productcert/pdf/ssa-920962.pdf
Trust: 0.8
title:Patch for the Siemens Automation License Manager arbitrary code execution vulnerabilityurl:https://www.cnvd.org.cn/patchInfo/show/138851
Trust: 0.6
title:Siemens Automation License Manager Security vulnerabilitiesurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=83958
Trust: 0.6
sources:
            
            
            CNVD: CNVD-2018-18001 // 
            
            
            
            JVNDB: JVNDB-2018-008996 // 
            
            
            
            CNNVD: CNNVD-201808-239

EXTERNAL IDS
db:NVDid:CVE-2018-11455
Trust: 3.6
db:SIEMENSid:SSA-920962
Trust: 2.3
db:BIDid:105114
Trust: 2.0
db:ICS CERTid:ICSA-18-226-03
Trust: 1.1
db:CNNVDid:CNNVD-201808-239
Trust: 0.9
db:CNVDid:CNVD-2018-18001
Trust: 0.8
db:JVNDBid:JVNDB-2018-008996
Trust: 0.8
db:IVDid:E2F8FC70-39AB-11E9-ABA5-000C29342CB1
Trust: 0.2
db:VULHUBid:VHN-121316
Trust: 0.1
sources:
            
            
            IVD: e2f8fc70-39ab-11e9-aba5-000c29342cb1 // 
            
            
            
            CNVD: CNVD-2018-18001 // 
            
            
            
            VULHUB: VHN-121316 // 
            
            
            
            BID: 105114 // 
            
            
            
            JVNDB: JVNDB-2018-008996 // 
            
            
            
            CNNVD: CNNVD-201808-239 // 
            
            
            
            NVD: CVE-2018-11455

REFERENCES
url:https://cert-portal.siemens.com/productcert/pdf/ssa-920962.pdf
Trust: 2.3
url:http://www.securityfocus.com/bid/105114
Trust: 1.7
url:https://ics-cert.us-cert.gov/advisories/icsa-18-226-03
Trust: 1.1
url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2018-11455
Trust: 0.8
url:https://nvd.nist.gov/vuln/detail/cve-2018-11455
Trust: 0.8
url:http://www.siemens.com/
Trust: 0.3
sources:
            
            
            CNVD: CNVD-2018-18001 // 
            
            
            
            VULHUB: VHN-121316 // 
            
            
            
            BID: 105114 // 
            
            
            
            JVNDB: JVNDB-2018-008996 // 
            
            
            
            CNNVD: CNNVD-201808-239 // 
            
            
            
            NVD: CVE-2018-11455

CREDITS
Vladimir Dashchenko of Kaspersky Lab.
Trust: 0.3
sources:
            
            
            BID: 105114

SOURCES
db:IVDid:e2f8fc70-39ab-11e9-aba5-000c29342cb1
db:CNVDid:CNVD-2018-18001
db:VULHUBid:VHN-121316
db:BIDid:105114
db:JVNDBid:JVNDB-2018-008996
db:CNNVDid:CNNVD-201808-239
db:NVDid:CVE-2018-11455

LAST UPDATE DATE
2024-11-23T21:38:26.326000+00:00

SOURCES UPDATE DATE
db:CNVDid:CNVD-2018-18001date:2018-09-07T00:00:00
db:VULHUBid:VHN-121316date:2019-10-09T00:00:00
db:BIDid:105114date:2018-08-14T00:00:00
db:JVNDBid:JVNDB-2018-008996date:2019-01-08T00:00:00
db:CNNVDid:CNNVD-201808-239date:2019-10-17T00:00:00
db:NVDid:CVE-2018-11455date:2024-11-21T03:43:24.220

SOURCES RELEASE DATE
db:IVDid:e2f8fc70-39ab-11e9-aba5-000c29342cb1date:2018-09-07T00:00:00
db:CNVDid:CNVD-2018-18001date:2018-09-07T00:00:00
db:VULHUBid:VHN-121316date:2018-08-07T00:00:00
db:BIDid:105114date:2018-08-14T00:00:00
db:JVNDBid:JVNDB-2018-008996date:2018-11-05T00:00:00
db:CNNVDid:CNNVD-201808-239date:2018-08-08T00:00:00
db:NVDid:CVE-2018-11455date:2018-08-07T15:29:00.497