CVE-2016-9154

23.12.2016, 05:59

Siemens Desigo PX Web modules PXA40-W0, PXA40-W1, PXA40-W2 for Desigo PX automation controllers PXC00-E.D, PXC50-E.D, PXC100-E.D, PXC200-E.D (All firmware versions < V6.00.046) and Desigo PX Web modules PXA30-W0, PXA30-W1, PXA30-W2 for Desigo PX automation controllers PXC00-U, PXC64-U, PXC128-U (All firmware versions < V6.00.046) use a pseudo random number generator with insufficient entropy to generate certificates for HTTPS, potentially allowing remote attackers to reconstruct the corresponding private key.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	7.5 HIGH	NETWORK	LOW	NONE	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
siemens	CNA	---				---
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 74%

Vendor	Product	Version
siemens	desigo_web_module_pxa30-w0_firmware	𝑥 ≤ 6.00.00
siemens	desigo_web_module_pxa30-w1_firmware	𝑥 ≤ 6.00.00
siemens	desigo_web_module_pxa30-w2_firmware	𝑥 ≤ 6.00.00
siemens	desigo_web_module_pxa40-w0_firmware	𝑥 ≤ 6.00.00
siemens	desigo_web_module_pxa40-w1_firmware	𝑥 ≤ 6.00.00
siemens	desigo_web_module_pxa40-w2_firmware	𝑥 ≤ 6.00.00

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-332 - Insufficient Entropy in PRNG
The lack of entropy available for, or used by, a Pseudo-Random Number Generator (PRNG) can be a stability and security threat.

References

http://www.securityfocus.com/bid/94962

http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-856492.pdf

https://ics-cert.us-cert.gov/advisories/ICSA-16-355-01

http://www.securityfocus.com/bid/94962

http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-856492.pdf

https://ics-cert.us-cert.gov/advisories/ICSA-16-355-01