Vulnerability Description
A vulnerability has been identified in DIGSI 4 (All versions < V4.92), EN100 Ethernet module DNP3 variant (All versions < V1.05.00), EN100 Ethernet module IEC 104 variant (All versions), EN100 Ethernet module IEC 61850 variant (All versions < V4.30), EN100 Ethernet module Modbus TCP variant (All versions), EN100 Ethernet module PROFINET IO variant (All versions). The device engineering mechanism allows an unauthenticated remote user to upload a modified device configuration overwriting access authorization passwords.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Siemens | Siprotec Compact 7Sj80 Firmware | < 4.77 |
| Siemens | Siprotec Compact 7Sj80 | - |
| Siemens | Siprotec Compact 7Sk80 Firmware | < 4.77 |
| Siemens | Siprotec Compact 7Sk80 | - |
| Siemens | Siprotec 4 7Sj66 Firmware | < 4.30 |
| Siemens | Siprotec 4 7Sj66 | - |
| Siemens | Digsi 4 | < 4.92 |
| Siemens | En100 Ethernet Module Iec 104 Firmware | - |
| Siemens | En100 Ethernet Module Iec 104 | - |
| Siemens | En100 Ethernet Module Dnp3 Firmware | - |
| Siemens | En100 Ethernet Module Dnp3 | - |
| Siemens | En100 Ethernet Module Modbus Tcp Firmware | - |
| Siemens | En100 Ethernet Module Modbus Tcp | - |
| Siemens | En100 Ethernet Module Profinet Io Firmware | - |
| Siemens | En100 Ethernet Module Profinet Io | - |
| Siemens | En100 Ethernet Module Iec 61850 Firmware | < 4.30 |
| Siemens | En100 Ethernet Module Iec 61850 | - |
Related Weaknesses (CWE)
References
- https://cert-portal.siemens.com/productcert/pdf/ssa-203306.pdfPatchVendor Advisory
- https://ics-cert.us-cert.gov/advisories/ICSA-18-067-01Third Party AdvisoryUS Government Resource
- https://cert-portal.siemens.com/productcert/pdf/ssa-203306.pdfPatchVendor Advisory
FAQ
What is CVE-2018-4840?
CVE-2018-4840 is a vulnerability with a CVSS score of 7.5 (HIGH). A vulnerability has been identified in DIGSI 4 (All versions < V4.92), EN100 Ethernet module DNP3 variant (All versions < V1.05.00), EN100 Ethernet module IEC 104 variant (All versions), EN100 Etherne...
How severe is CVE-2018-4840?
CVE-2018-4840 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2018-4840?
Check the references section above for vendor advisories and patch information. Affected products include: Siemens Siprotec Compact 7Sj80 Firmware, Siemens Siprotec Compact 7Sj80, Siemens Siprotec Compact 7Sk80 Firmware, Siemens Siprotec Compact 7Sk80, Siemens Siprotec 4 7Sj66 Firmware.