製品・ソフトウェアに関する情報

JVN脆弱性詳細

複数の SCALANCE 製品におけるクロスサイトスクリプティングの脆弱性

Title	複数の SCALANCE 製品におけるクロスサイトスクリプティングの脆弱性
Summary	複数の SCALANCE 製品には、クロスサイトスクリプティングの脆弱性が存在します。
Possible impacts	情報を取得される、および情報を改ざんされる可能性があります。
Solution	ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。
Publication Date	June 12, 2018, midnight
Registration Date	Aug. 24, 2018, 3:14 p.m.
Last Update	Oct. 1, 2018, 2:55 p.m.

Affected System

シーメンス

SCALANCE X-300

SCALANCE X200 IRT ファームウェア 5.4.1 未満

SCALANCE X200 ファームウェア

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2018-4842	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-4842
National Vulnerability Database (NVD)
2	CVE-2018-4842	https://nvd.nist.gov/vuln/detail/CVE-2018-4842

CWE (共通脆弱性タイプ一覧)

No	Name	URL
JVNDB
1	CWE-79	https://jvndb.jvn.jp/ja/cwe/CWE-79.html

ベンダー情報

No	Name	URL
Siemens Security Advisory
1	SSA-480829	https://cert-portal.siemens.com/productcert/pdf/ssa-480829.pdf

その他

No	Name	URL
ICS-CERT ADVISORY
1	ICSA-18-163-02	https://ics-cert.us-cert.gov/advisories/ICSA-18-163-02

Change Log

No	Changed Details	Date of change
1	[2018年08月24日] 掲載	Aug. 24, 2018, 3:14 p.m.
2	[2018年10月01日] 参考情報：ICS-CERT ADVISORY (ICSA-18-163-02) を追加	Oct. 1, 2018, 2:54 p.m.

NVD Vulnerability Information

CVE-2018-4842

Summary	A vulnerability has been identified in SCALANCE X-200IRT switch family (incl. SIPLUS NET variants) (All versions < V5.4.1), SCALANCE X-200RNA switch family (All versions < V3.2.7), SCALANCE X-300 switch family (incl. X408 and SIPLUS NET variants) (All versions < V4.1.3). A remote, authenticated attacker with access to the configuration web server could be able to store script code on the web site, if the HRP redundancy option is set. This code could be executed in the web browser of victims visiting this web site (XSS), affecting its confidentiality, integrity and availability. User interaction is required for successful exploitation, as the user needs to visit the manipulated web site. At the stage of publishing this security advisory no public exploitation is known. The vendor has confirmed the vulnerability and provides mitigations to resolve it.
Publication Date	June 15, 2018, 1:29 a.m.
Registration Date	March 1, 2021, 7:28 p.m.
Last Update	Nov. 21, 2024, 1:07 p.m.

Affected software configurations

Configuration1		or higher	or less	more than	less than
cpe:2.3:o:siemens:scalance_x200irt_firmware::::::::					5.4.1
execution environment
1	cpe:2.3:h:siemens:scalance_x200_irt:-:::::::*

Configuration2		or higher	or less	more than	less than
cpe:2.3:o:siemens:scalance_x300_firmware:-:::::::*
execution environment
1	cpe:2.3:h:siemens:scalance_x300:-:::::::*

Configuration3		or higher	or less	more than	less than
cpe:2.3:o:siemens:scalance_x200_firmware::::::::					5.2.3
execution environment
1	cpe:2.3:h:siemens:scalance_x200:-:::::::*

Related information, measures and tools

No	URL	タグ
1	https://cert-portal.siemens.com/productcert/pdf/ssa-480829.pdf	Mitigation Vendor Advisory
2	https://cert-portal.siemens.com/productcert/pdf/ssa-480829.pdf	Mitigation Vendor Advisory
3	https://www.securityfocus.com/bid/104494
4	https://www.securityfocus.com/bid/104494

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-79	クロスサイト・スクリプティング（XSS）	https://cwe.mitre.org/data/definitions/79.html