Description
A vulnerability has been identified in SIMATIC MV540 H (All versions < V3.3), SIMATIC MV540 S (All versions < V3.3), SIMATIC MV550 H (All versions < V3.3), SIMATIC MV550 S (All versions < V3.3), SIMATIC MV560 U (All versions < V3.3), SIMATIC MV560 X (All versions < V3.3). The web session management of affected devices does not invalidate session ids in certain logout scenarios. This could allow an authenticated remote attacker to hijack other users' sessions.
References (1)
Core 1
Core References
Patch, Vendor Advisory x_refsource_misc
https://cert-portal.siemens.com/productcert/pdf/ssa-348662.pdf
Scores
CVSS v3
8.0
EPSS
0.0033
EPSS Percentile
55.9%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
Details
CWE
CWE-613
Status
published
Products (6)
siemens/simatic_mv540_h_firmware
< 3.3
siemens/simatic_mv540_s_firmware
< 3.3
siemens/simatic_mv550_h_firmware
< 3.3
siemens/simatic_mv550_s_firmware
< 3.3
siemens/simatic_mv560_u_firmware
< 3.3
siemens/simatic_mv560_x_firmware
< 3.3
Published
Jul 12, 2022
Tracked Since
Feb 18, 2026