Vulnerability Description
A vulnerability has been identified in APOGEE MEC/MBC/PXC (P2) (All versions < V2.8.2), APOGEE PXC Compact (BACnet) (All versions < V3.5.3), APOGEE PXC Compact (P2 Ethernet) (All versions >= V2.8.2 < V2.8.19), APOGEE PXC Modular (BACnet) (All versions < V3.5.3), APOGEE PXC Modular (P2 Ethernet) (All versions >= V2.8.2 < V2.8.19), Capital Embedded AR Classic 431-422 (All versions), Capital Embedded AR Classic R20-11 (All versions < V2303), Desigo PXC00-E.D (All versions >= V2.3 < V6.0.327), Desigo PXC00-U (All versions >= V2.3x and < V6.00.327), Desigo PXC001-E.D (All versions >= V2.3 < V6.0.327), Desigo PXC100-E.D (All versions >= V2.3 < V6.0.327), Desigo PXC12-E.D (All versions >= V2.3 < V6.0.327), Desigo PXC128-U (All versions >= V2.3x and < V6.00.327), Desigo PXC200-E.D (All versions >= V2.3 < V6.0.327), Desigo PXC22-E.D (All versions >= V2.3 < V6.0.327), Desigo PXC22.1-E.D (All versions >= V2.3 < V6.0.327), Desigo PXC36.1-E.D (All versions >= V2.3 < V6.0.327), Desigo PXC50-E.D (All versions >= V2.3 < V6.0.327), Desigo PXC64-U (All versions >= V2.3x and < V6.00.327), Desigo PXM20-E (All versions >= V2.3 < V6.0.327), Nucleus NET (All versions), Nucleus ReadyStart V3 (All versions < V2017.02.3), Nucleus Source Code (All versions), SIMOTICS CONNECT 400 (All versions < V0.3.0.330), TALON TC Compact (BACnet) (All versions < V3.5.3), TALON TC Modular (BACnet) (All versions < V3.5.3). By sending specially crafted DHCP packets to a device where the DHCP client is enabled, an attacker could change the IP address of the device to an invalid value.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Siemens | Capital Vstar | All versions |
| Siemens | Nucleus Net | All versions |
| Siemens | Nucleus Readystart | < 2017.02.2 |
| Siemens | Nucleus Safetycert | All versions |
| Siemens | Nucleus Source Code | All versions |
| Siemens | Nucleus Rtos | All versions |
| Siemens | Apogee Modular Equiment Controller Firmware | < 2.8.2 |
| Siemens | Apogee Modular Equiment Controller | - |
| Siemens | Apogee Modular Building Controller Firmware | < 2.8.2 |
| Siemens | Apogee Modular Building Controller | - |
| Siemens | Apogee Pxc Firmware | <= 2.8.2 |
| Siemens | Apogee Pxc | - |
| Siemens | Desigo Pxc Firmware | >= 2.3 |
| Siemens | Desigo Pxc | - |
| Siemens | Desigo Pxm20 Firmware | >= 2.3 |
| Siemens | Desigo Pxm20 | - |
| Siemens | Simotics Connect 400 Firmware | <= 0.3.0.95 |
| Siemens | Simotics Connect 400 | - |
| Siemens | Talon Tc Firmware | >= 3.0 |
| Siemens | Talon Tc | - |
Related Weaknesses (CWE)
References
- https://cert-portal.siemens.com/productcert/html/ssa-162506.html
- https://cert-portal.siemens.com/productcert/html/ssa-434032.html
- https://cert-portal.siemens.com/productcert/pdf/ssa-162506.pdfVendor Advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-434032.pdfVendor Advisory
- https://us-cert.cisa.gov/ics/advisories/icsa-20-105-06Third Party AdvisoryUS Government Resource
- https://cert-portal.siemens.com/productcert/html/ssa-162506.html
- https://cert-portal.siemens.com/productcert/html/ssa-434032.html
- https://cert-portal.siemens.com/productcert/pdf/ssa-162506.pdfVendor Advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-434032.pdfVendor Advisory
- https://us-cert.cisa.gov/ics/advisories/icsa-20-105-06Third Party AdvisoryUS Government Resource
FAQ
What is CVE-2019-13939?
CVE-2019-13939 is a vulnerability with a CVSS score of 7.1 (HIGH). A vulnerability has been identified in APOGEE MEC/MBC/PXC (P2) (All versions < V2.8.2), APOGEE PXC Compact (BACnet) (All versions < V3.5.3), APOGEE PXC Compact (P2 Ethernet) (All versions >= V2.8.2 < ...
How severe is CVE-2019-13939?
CVE-2019-13939 has been rated HIGH with a CVSS base score of 7.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2019-13939?
Check the references section above for vendor advisories and patch information. Affected products include: Siemens Capital Vstar, Siemens Nucleus Net, Siemens Nucleus Readystart, Siemens Nucleus Safetycert, Siemens Nucleus Source Code.