CVE-2019-10915

HIGH

TIA Administrator < V1.0 SP1 Upd1 - Unauthenticated Critical Function Access

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2019-10915. PoCs published by jiansiting.

AI-analyzed exploit summary This repository contains a functional exploit for CVE-2019-10915, an authentication bypass vulnerability in Siemens TIA Portal. The exploit uses WebSocket communication to execute arbitrary commands, including redirecting firmware updates to a malicious server.

Description

A vulnerability has been identified in TIA Administrator (All versions < V1.0 SP1 Upd1). The integrated configuration web application (TIA Administrator) allows to execute certain application commands without proper authentication. The vulnerability could be exploited by an attacker with local access to the affected system. Successful exploitation requires no privileges and no user interaction. An attacker could use the vulnerability to compromise confidentiality and integrity and availability of the affected system. At the time of advisory publication no public exploitation of this security vulnerability was known.

Exploits (1)

nomisec WORKING POC 4 stars
by jiansiting · poc
https://github.com/jiansiting/CVE-2019-10915

This repository contains a functional exploit for CVE-2019-10915, an authentication bypass vulnerability in Siemens TIA Portal. The exploit uses WebSocket communication to execute arbitrary commands, including redirecting firmware updates to a malicious server.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Siemens TIA Portal (versions affected by CVE-2019-10915)
No auth needed
Prerequisites: Network access to the TIA Portal server · WebSocket connectivity to the target port (default 8888)
devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (4)

Core 4
Core References
Patch, Vendor Advisory x_refsource_misc
https://cert-portal.siemens.com/productcert/pdf/ssa-721298.pdf
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/109124
Patch, Third Party Advisory x_refsource_confirm
https://cert-portal.siemens.com/productcert/pdf/ssa-834884.pdf
Third Party Advisory, US Government Resource x_refsource_misc
https://www.us-cert.gov/ics/advisories/icsa-19-253-02

Scores

CVSS v3 7.8
EPSS 0.0090
EPSS Percentile 54.8%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-306
Status published
Products (2)
siemens/sinetplan 2.0
siemens/tia_administrator 1.0 sp1
Published Jul 11, 2019
Tracked Since Feb 18, 2026