CVE-2018-13813 vulnerability in Siemens Products
Published on December 13, 2018
A vulnerability has been identified in SIMATIC HMI Comfort Panels 4" - 22" (All versions < V15 Update 4), SIMATIC HMI Comfort Outdoor Panels 7" & 15" (All versions < V15 Update 4), SIMATIC HMI KTP Mobile Panels KTP400F, KTP700, KTP700F, KTP900 and KTP900F (All versions < V15 Update 4), SIMATIC WinCC Runtime Advanced (All versions < V15 Update 4), SIMATIC WinCC Runtime Professional (All versions < V15 Update 4), SIMATIC WinCC (TIA Portal) (All versions < V15 Update 4), SIMATIC HMI Classic Devices (TP/MP/OP/MP Mobile Panel) (All versions). The webserver of affected HMI devices may allow URL redirections to untrusted websites. An attacker must trick a valid user who is authenticated to the device into clicking on a malicious link to exploit the vulnerability. At the time of advisory publication no public exploitation of this security vulnerability was known.
Weakness Type
What is an Open Redirect Vulnerability?
A web application accepts a user-controlled input that specifies a link to an external site, and uses that link in a Redirect. This simplifies phishing attacks. An http parameter may contain a URL value and could cause the web application to redirect the request to the specified URL. By modifying the URL value to a malicious site, an attacker may successfully launch a phishing scam and steal user credentials. Because the server name in the modified link is identical to the original site, phishing attempts have a more trustworthy appearance.
CVE-2018-13813 has been classified to as an Open Redirect vulnerability or weakness.
Products Associated with CVE-2018-13813
You can be notified by email with stack.watch whenever vulnerabilities like CVE-2018-13813 are published in these products:
Affected Versions
Siemens AG SIMATIC HMI Comfort Panels 4" - 22", SIMATIC HMI Comfort Outdoor Panels 7" & 15", SIMATIC HMI KTP Mobile Panels KTP400F, KTP700, KTP700F, KTP900 und KTP900F, SIMATIC WinCC Runtime Advanced, SIMATIC WinCC Runtime Professional, SIMATIC WinCC (TIA Portal), SIMATIC HMI Classic Devices (TP/MP/OP/MP Mobile Panel):- Version SIMATIC HMI Comfort Panels 4" - 22" : All versions < V15 Update 4 is affected.
- Version SIMATIC HMI Comfort Outdoor Panels 7" & 15" : All versions < V15 Update 4 is affected.
- Version SIMATIC HMI KTP Mobile Panels KTP400F, KTP700, KTP700F, KTP900 und KTP900F : All versions < V15 Update 4 is affected.
- Version SIMATIC WinCC Runtime Advanced : All versions < V15 Update 4 is affected.
- Version SIMATIC WinCC Runtime Professional : All versions < V15 Update 4 is affected.
- Version SIMATIC WinCC (TIA Portal) : All versions < V15 Update 4 is affected.
- Version SIMATIC HMI Classic Devices (TP/MP/OP/MP Mobile Panel) : All versions is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.