OTPulse
FeedAboutContact

Siemens Viewport for Web Office Portal

Act Now9.8ICS-CERT ICSA-17-180-03Jun 29, 2017
Attack VectorNetwork
Auth RequiredNone
ComplexityLow
User InteractionNone needed
Summary

ViewPort for Web Office Portal contains an authentication bypass vulnerability (CWE-287) that allows remote attackers to access the portal without valid credentials. Affected versions are those earlier than 1453. Successful exploitation grants administrative access to portal functions and potentially downstream systems managed through this interface.

What this means
What could happen
An attacker could remotely bypass authentication on the ViewPort for Web Office Portal and execute commands with administrative privileges, potentially compromising access controls for the entire portal and affecting any systems managed through it.
Who's at risk
Organizations operating Siemens ViewPort for Web Office Portal—typically utility companies and large industrial facilities using Siemens energy management or operational technology portals for centralized monitoring and control. This affects any administrator or operator interface relying on this portal for access to critical systems.
How it could be exploited
An attacker on the network can send specially crafted requests to the ViewPort web portal without providing valid credentials. The authentication bypass allows direct access to administrative functions, enabling command execution or unauthorized configuration changes.
Prerequisites
  • Network access to the ViewPort for Web Office Portal web server (typically port 80 or 443)
  • No valid credentials required
remotely exploitableno authentication requiredlow complexityaffects administrative access controlshigh CVSS score (9.8)
Exploitability
Moderate exploit probability (EPSS 1.5%)
Affected products (1)
ProductAffected VersionsFix Status
ViewPort for Web Office Portal:< 14531453
Remediation & Mitigation
0/3
Do now
0/2
HARDENINGApply network segmentation and firewall rules to restrict access to the ViewPort web portal to authorized administrative staff only
HARDENINGReview Siemens Security Advisory SSA-545214 at http://www.siemens.com/cert/advisories and implement detailed mitigation instructions from https://www.siemens.com/gridsecurity
Schedule — requires maintenance window
0/1

Patching may require device reboot — plan for process interruption

HOTFIXUpdate ViewPort for Web Office Portal to revision 1453 or later by contacting Siemens Energy Customer Support Center at support.energy@siemens.com
View full CISA ICS-CERT advisory
↑↓ Navigate · Esc Close
API: /api/v1/advisories/7ec364b9-5faf-4e48-8ef1-fc1a8b4ad945
Siemens Viewport for Web Office Portal | CVSS 9.8 - OTPulse