Siemens SIPORT MP Client Authentication Bypass Vulnerability (CVE-2020-7591)

Critical Vulnerability Information 1. Summary CVSS v3 Score: 8.8 Notes: Exploitable remotely, low skill level required Vendor: Siemens Product: SIPORT MP Vulnerability: Use of Client-Side Authentication 2. Risk Assessment Successful exploitation of this vulnerability may allow an authenticated attacker to impersonate other users of the system and perform actions on their behalf (if the single sign-on feature "Allow passwordless login" is enabled). 3. Technical Details 3.1 Affected Products SIPORT MP: Versions 3.2.1 and earlier 3.2 Vulnerability Overview CWE: CWE-603 Use of Client-Side Authentication The affected product contains an authentication bypass vulnerability that may allow an attacker to impersonate system users CVE ID: CVE-2020-7591 CVSS v3 Base Score: 8.8 3.3 Background Critical Infrastructure Sector: Commercial Facilities Deployed Countries/Regions: Global Company Headquarters Location: Germany 3.4 Researchers Siemens ProductCERT reported this vulnerability to CISA 4. Mitigations Siemens has released an updated version of SIPORT MP (v3.2.1); users are advised to install this update on all affected systems For installations unable to upgrade to version 3.2.1, contact Siemens support for information on deployment and specific mitigation measures To enhance security, Siemens recommends users protect network access to affected devices through appropriate mechanisms CISA recommends users implement defensive measures to minimize the risk of exploitation, including: - Isolating all control system devices and/or systems from the internet - Placing control system networks and remote devices behind firewalls and segregating them from business networks - Using secure methods such as Virtual Private Networks (VPNs) when remote access is required

Goal Reached Thanks to every supporter — we hit 100%!

Siemens SIPORT MP Client Authentication Bypass Vulnerability (CVE-2020-7591)