CVE-2022-43958

A vulnerability has been identified in QMS Automotive (All versions < V12.39), QMS Automotive (All versions < V12.39). User credentials are stored in plaintext in the database without any hashing mechanism. This could allow an attacker to gain access to credentials and impersonate other users.

CVSS v3 7.6 HIGH

7.6^/10

CVSS v3 : HIGH

Vector :

Exploitability : 2.1 / Impact : 5.5

Attack Vector ADJACENT_NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact LOW

Scope UNCHANGED

References

Link	Resource
https://cert-portal.siemens.com/productcert/pdf/ssa-147266.pdf
https://cert-portal.siemens.com/productcert/pdf/ssa-587547.pdf	Mitigation Vendor Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:siemens:qms_automotive:*:*:*:*:*:*:*:*

History

12 Sep 2023, 10:15

Type	Values Removed	Values Added
CWE	~~CWE-312~~	CWE-256
CVSS	v2 : ~~unknown~~ v3 : ~~9.1~~	v2 : unknown v3 : 7.6
References		(MISC) https://cert-portal.siemens.com/productcert/pdf/ssa-147266.pdf -
Summary	A vulnerability has been identified in QMS Automotive (All versions). User credentials are stored in plaintext in the database. This could allow an attacker to gain access to credentials and impersonate other users.	A vulnerability has been identified in QMS Automotive (All versions < V12.39), QMS Automotive (All versions < V12.39). User credentials are stored in plaintext in the database without any hashing mechanism. This could allow an attacker to gain access to credentials and impersonate other users.

Information

Published : 2022-11-08 11:15

Updated : 2024-02-28 19:29

NVD link : CVE-2022-43958

Mitre link : CVE-2022-43958

CVE.ORG link : CVE-2022-43958

JSON object : View

Products Affected

siemens

qms_automotive

CWE

CWE-256

Plaintext Storage of a Password

CWE-312

Cleartext Storage of Sensitive Information

{"id": "CVE-2022-43958", "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "productcert@siemens.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.6, "attackVector": "ADJACENT_NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "LOW", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 5.5, "exploitabilityScore": 2.1}, {"type": "Secondary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.1, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.2, "exploitabilityScore": 3.9}]}, "published": "2022-11-08T11:15:12.193", "references": [{"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-147266.pdf", "source": "productcert@siemens.com"}, {"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-587547.pdf", "tags": ["Mitigation", "Vendor Advisory"], "source": "productcert@siemens.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "productcert@siemens.com", "description": [{"lang": "en", "value": "CWE-256"}]}, {"type": "Secondary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-312"}]}], "descriptions": [{"lang": "en", "value": "A vulnerability has been identified in QMS Automotive (All versions < V12.39), QMS Automotive (All versions < V12.39). User credentials are stored in plaintext in the database without any hashing mechanism. This could allow an attacker to gain access to credentials and impersonate other users."}, {"lang": "es", "value": "Se ha identificado una vulnerabilidad en QMS Automotive (todas las versiones < V12.39), QMS Automotive (todas las versiones < V12.39). Las credenciales de usuario se almacenan en texto plano en la base de datos sin ning\u00fan mecanismo de hash. Esto podr\u00eda permitir a un atacante obtener acceso a las credenciales y suplantar a otros usuarios."}], "lastModified": "2023-09-12T10:15:21.017", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:siemens:qms_automotive:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "495D38E5-5C7F-43C2-997F-D2226C7D0A2C"}], "operator": "OR"}]}], "sourceIdentifier": "productcert@siemens.com"}