CVE-2019-13944
Description
A vulnerability has been identified in EN100 Ethernet module DNP3 variant (All versions), EN100 Ethernet module IEC 61850 variant (All versions < V4.37), EN100 Ethernet module IEC104 variant (All versions), EN100 Ethernet module Modbus TCP variant (All versions), EN100 Ethernet module PROFINET IO variant (All versions). A vulnerability in the integrated web server of the affected devices could allow unauthorized attackers to obtain sensitive information about the device, including logs and configurations. At the time of advisory publication no public exploitation of this security vulnerability was known.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Siemens EN100 Ethernet module integrated web server vulnerability allows unauthorized attackers to obtain sensitive device information.
Vulnerability
CVE-2019-13944 is a vulnerability in the integrated web server of Siemens EN100 Ethernet modules. It affects all variants except the IEC 61850 variant, which is only affected in versions prior to V4.37. The vulnerability allows unauthorized attackers to obtain sensitive information about the device, including logs and configurations, by exploiting improper access restrictions in the web server [1].
Exploitation
An attacker can exploit this vulnerability remotely without authentication. By sending specially crafted requests to the web server, they can bypass access controls and retrieve sensitive files such as device logs and configuration data. At the time of advisory publication, no public exploitation of this vulnerability was known [1].
Impact
Successful exploitation leads to unauthorized disclosure of sensitive device information, including logs and configurations. This information could be used to gain further insights into the device's operation or to facilitate additional attacks against the device or network [1].
Mitigation
For the IEC 61850 variant, Siemens has released firmware version V4.37 to address the vulnerability. For all other affected variants, no fix is currently available. As a workaround, Siemens recommends network segmentation, restricting access to the web interface to trusted networks, and monitoring for suspicious activity. Users should consult the latest advisory from Siemens or CISA for updates [1].
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
10- Range: All versions
- Range: All versions
- Range: < V4.37
- Range: All versions
- Range: All versions
- Siemens AG/EN100 Ethernet module DNP3 variantv5Range: All versions
- Siemens AG/EN100 Ethernet module IEC104 variantv5Range: All versions
- Siemens AG/EN100 Ethernet module IEC 61850 variantv5Range: All versions < V4.37
- Siemens AG/EN100 Ethernet module Modbus TCP variantv5Range: All versions
- Siemens AG/EN100 Ethernet module PROFINET IO variantv5Range: All versions
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2- cert-portal.siemens.com/productcert/pdf/ssa-418979.pdfmitrex_refsource_MISC
- www.us-cert.gov/ics/advisories/icsa-19-344-07mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.