A vulnerability classified as problematic has been found in Siemens SINEMA Remote Connect Server up to 2.0. This affects some unknown processing. The manipulation with an unknown input leads to a weak password hash vulnerability (Password). CWE is classifying the issue as CWE-916. The product generates a hash for a password, but it uses a scheme that does not provide a sufficient level of computational effort that would make password cracking attacks infeasible or expensive. This is going to have an impact on confidentiality. The summary by CVE is:

A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V2.0 SP1). An attacker with administrative privileges can obtain the hash of a connected device's password. The security vulnerability could be exploited by an attacker with network access to the SINEMA Remote Connect Server and administrative privileges. At the time of advisory publication no public exploitation of this security vulnerability was known.

The weakness was disclosed 09/13/2019. This vulnerability is uniquely identified as CVE-2019-13922 since 07/18/2019. The exploitability is told to be easy. It is possible to initiate the attack remotely. Required for exploitation is a authentication. Neither technical details nor an exploit are publicly available. MITRE ATT&CK project uses the attack technique T1552 for this issue.

Applying the patch 2.0 SP1 is able to eliminate this problem.

The entries 141776, 141775 and 141774 are pretty similar.

Productinfo

Vendor

• Siemens

Name

• SINEMA Remote Connect Server

Version

• 2.0

License

• commercial

CPE 2.3info

• 🔍
• 🔍

CPE 2.2info

• 🔍
• 🔍

CVSSv4info

CVSSv3info

CVSSv2info

Exploitinginfo

Threat Intelligenceinfo

Countermeasuresinfo

Timelineinfo

Sourcesinfo

Entryinfo

Discussion