CVE-2023-30757 — Protection Mechanism Failure in Siemens Totally Integrated Automation Portal V14

CWE-693 — Protection Mechanism Failure3 documents3 sources

Severity

5.5MEDIUMNVD

CNA6.2

EPSS

0.1%

top 77.54%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Siemens Totally Integrated Automation Portal V14 Siemens Totally Integrated Automation Portal V15 Siemens Totally Integrated Automation Portal V15.1 +6 more

Timeline

PublishedJun 13

Description

A vulnerability has been identified in Totally Integrated Automation Portal (TIA Portal) V14 (All versions), Totally Integrated Automation Portal (TIA Portal) V15 (All versions), Totally Integrated Automation Portal (TIA Portal) V15.1 (All versions), Totally Integrated Automation Portal (TIA Portal) V16 (All versions), Totally Integrated Automation Portal (TIA Portal) V17 (All versions), Totally Integrated Automation Portal (TIA Portal) V18 (All versions), Totally Integrated Automation Portal (T…

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:NExploitability: 1.8 | Impact: 3.6

Affected Packages9 packages

▶CVEListV5siemens/totally_integrated_automation_portal_v14< *

▶CVEListV5siemens/totally_integrated_automation_portal_v15< *

▶CVEListV5siemens/totally_integrated_automation_portal_v16< *

▶CVEListV5siemens/totally_integrated_automation_portal_v17< *

▶CVEListV5siemens/totally_integrated_automation_portal_v18< *

🔴Vulnerability Details

CVEList

CVE-2023-30757: A vulnerability has been identified in Totally Integrated Automation Portal (TIA Portal) V14 (All versions), Totally Integrated Automation Portal (TIA↗2023-06-13

▶

GHSA

GHSA-h55g-jggq-rc4h: A vulnerability has been identified in Totally Integrated Automation Portal (TIA Portal) V14 (All versions), Totally Integrated Automation Portal (TIA↗2023-06-13

▶