simatic-dashboard-exposed: Siemens SIMATIC 300 Dashboard - Exposed

日期: 2025-08-01 | 影响软件: Siemens SIMATIC 300 Dashboard | POC: 已公开

漏洞描述

An unauthenticated exposed web interface for Siemens SIMATIC S7-300 was discovered, potentially allowing access without any login credentials.

PoC代码[已公开]

id: simatic-dashboard-exposed

info:
  name: Siemens SIMATIC 300 Dashboard - Exposed
  author: Th3l0newolf
  severity: high
  description: |
    An unauthenticated exposed web interface for Siemens SIMATIC S7-300 was discovered, potentially allowing access without any login credentials.
  reference:
    - https://new.siemens.com
  metadata:
    verified: true
    max-request: 1
    shodan-query: title:"SIMATIC 300"
  tags: siemens,simatic,plc,scada,iot,misconfig,unauth,vuln

http:
  - method: GET
    path:
      - "{{BaseURL}}/Portal0000.htm"

    matchers-condition: and
    matchers:
      - type: regex
        part: body
        regex:
          - "SIMATIC\\s*300"

      - type: word
        part: body
        words:
          - 'alt="Simatic S7 CP"'

      - type: status
        status:
          - 200
# digest: 4b0a00483046022100b40f74756bd76bbf3e4b356cee9c29e685ddd7254d3127c63557215b0a4919ff02210098a9ed76840c3cacb268079b807070e41fb44ec1e6d6417fd908412a2c8d61a1:922c64590222798bb761d5b6d8e72950

来源: https://github.com/projectdiscovery/nuclei-templates/blob/main/http/misconfiguration/simatic-dashboard-exposed.yaml

漏洞描述

PoC代码[已公开]

相关漏洞推荐