CVE-2023-23588
published 2023-04-11CVE-2023-23588: A vulnerability has been identified in SIMATIC IPC1047 (All versions), SIMATIC IPC1047E (All versions with maxView Storage Manager < 4.09.00.25611 on Windows)…
PriorityP431medium6.3CVSS 3.1
AVLACHPRLUINSUCHIHAN
EPSS
0.09%
0.6th percentile
A vulnerability has been identified in SIMATIC IPC1047 (All versions), SIMATIC IPC1047E (All versions with maxView Storage Manager < 4.09.00.25611 on Windows), SIMATIC IPC647D (All versions), SIMATIC IPC647E (All versions with maxView Storage Manager < 4.09.00.25611 on Windows), SIMATIC IPC847D (All versions), SIMATIC IPC847E (All versions with maxView Storage Manager < 4.09.00.25611 on Windows). The Adaptec Maxview application on affected devices is using a non-unique TLS certificate across installations to protect the communication from the local browser to the local application.
A local attacker may use this key to decrypt intercepted local traffic between the browser and the application and could perform a man-in-the-middle attack in order to modify data in transit.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microchip | maxview_storage_manager | < 4.09.00.25611 | 4.09.00.25611 |
| siemens | simatic_ipc1047 | — | — |
| siemens | simatic_ipc1047e | — | — |
| siemens | simatic_ipc647d | — | — |
| siemens | simatic_ipc647e | — | — |
| siemens | simatic_ipc847d | — | — |
| siemens | simatic_ipc847e | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
CISA ICS
Siemens Adaptec maxView Application
cisa_ics·2023-04-13·CVSS 6.2
[MEDIUM] Siemens Adaptec maxView Application
ICS Advisory
##
Siemens Adaptec maxView Application
Release DateApril 13, 2023
Alert CodeICSA-23-103-01
As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories (CERT Services | Services | Siemens Global).
## 1. EXECUTIVE SUMMARY
- CVSS v3 6.2
- ATTENTION: Low attack complexity
- Vendor: Siemens
- Equipment: Adaptec maxView Application
- Vulnerability: Exposure of Sensitive Information to an Unauthorized Actor
## 2. RISK EVALUATION
Successful exploitation of this vulnerability could allow a local attacker to decrypt intercepted local traffic betwe
GHSA
GHSA-55r6-xw9h-2c48: A vulnerability has been identified in SIMATIC IPC1047 (All versions), SIMATIC IPC1047E (All versions with maxView Storage Manager < 4
ghsa_unreviewed·2023-04-11
CVE-2023-23588 [MEDIUM] CWE-200 GHSA-55r6-xw9h-2c48: A vulnerability has been identified in SIMATIC IPC1047 (All versions), SIMATIC IPC1047E (All versions with maxView Storage Manager < 4
A vulnerability has been identified in SIMATIC IPC1047 (All versions), SIMATIC IPC1047E (All versions with maxView Storage Manager < 4.09.00.25611 on Windows), SIMATIC IPC647D (All versions), SIMATIC IPC647E (All versions with maxView Storage Manager < 4.09.00.25611 on Windows), SIMATIC IPC847D (All versions), SIMATIC IPC847E (All versions with maxView Storage Manager < 4.09.00.25611 on Windows). The Adaptec Maxview application on affected devices is using a non-unique TLS certificate across installations to protect the communication from the local browser to the local application.
A local attacker may use this key to decrypt intercepted local traffic between the browser and the application and could perform a man-in-the-middle attack in order to modify data in transit.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2023-04-11
Published