Vulnerability Description
A vulnerability has been identified in APOGEE PXC Compact (BACnet) (All versions < V3.5.5), APOGEE PXC Compact (P2 Ethernet) (All versions < V2.8.20), APOGEE PXC Modular (BACnet) (All versions < V3.5.5), APOGEE PXC Modular (P2 Ethernet) (All versions < V2.8.20), Nucleus NET (All versions < V5.2), Nucleus ReadyStart V3 (All versions < V2012.12), Nucleus Source Code (All versions), PLUSCONTROL 1st Gen (All versions), TALON TC Compact (BACnet) (All versions < V3.5.5), TALON TC Modular (BACnet) (All versions < V3.5.5). Initial Sequence Numbers (ISNs) for TCP connections are derived from an insufficiently random source. As a result, the ISN of current and future TCP connections could be predictable. An attacker could hijack existing sessions or spoof future ones.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Siemens | Capital Vstar | All versions |
| Siemens | Nucleus Net | < 5.2 |
| Siemens | Nucleus Source Code | All versions |
| Siemens | Pluscontrol 1St Gen | All versions |
| Siemens | Nucleus Readystart | < 2012.12 |
| Arm | Arm | - |
| Mips | Mips | - |
| Powerpc Project | Powerpc | - |
Related Weaknesses (CWE)
References
- https://cert-portal.siemens.com/productcert/pdf/ssa-180579.pdf
- https://cert-portal.siemens.com/productcert/pdf/ssa-344238.pdfVendor Advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-362164.pdfVendor Advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-436469.pdf
- https://cert-portal.siemens.com/productcert/pdf/ssa-180579.pdf
- https://cert-portal.siemens.com/productcert/pdf/ssa-344238.pdfVendor Advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-362164.pdfVendor Advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-436469.pdf
FAQ
What is CVE-2020-28388?
CVE-2020-28388 is a vulnerability with a CVSS score of 6.5 (MEDIUM). A vulnerability has been identified in APOGEE PXC Compact (BACnet) (All versions < V3.5.5), APOGEE PXC Compact (P2 Ethernet) (All versions < V2.8.20), APOGEE PXC Modular (BACnet) (All versions < V3.5....
How severe is CVE-2020-28388?
CVE-2020-28388 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-28388?
Check the references section above for vendor advisories and patch information. Affected products include: Siemens Capital Vstar, Siemens Nucleus Net, Siemens Nucleus Source Code, Siemens Pluscontrol 1St Gen, Siemens Nucleus Readystart.