MitM attack in SAP Plant Connectivity
| Risk | Medium |
| Patch available | YES |
| Number of vulnerabilities | 1 |
| CVE-ID | CVE-2023-2827 |
| CWE-ID | CWE-347 |
| Exploitation vector | Network |
| Public exploit | N/A |
| Vulnerable software |
Production Connector for SAP Digital Manufacturing Universal components / Libraries / Software for developers SAP Plant Connectivity Universal components / Libraries / Software for developers |
| Vendor | SAP |
Security Bulletin
This security bulletin contains one medium risk vulnerability.
1) Improper Verification of Cryptographic Signature
EUVDB-ID: #VU78835
Risk: Medium
CVSSv3.1: 4.6 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N/E:U/RL:O/RC:C]
CVE-ID: CVE-2023-2827
CWE-ID:
CWE-347 - Improper Verification of Cryptographic Signature
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform MitM attack.
The vulnerability exists due to improper verification of cryptographic signature of the JSON Web Token (JWT) in the HTTP request sent from SAP Digital Manufacturing. A remote attacker can perform MitM attack.
Install updates from vendor's website.
Vulnerable software versionsProduction Connector for SAP Digital Manufacturing: 1.0
SAP Plant Connectivity: 15.5
CPE2.3- cpe:2.3:a:sap:production_connector_for_sap_digital_manufacturing:1.0:*:*:*:*:*:*:*
- cpe:2.3:a:sap:sap_plant_connectivity:15.5:*:*:*:*:*:*:*
http://dam.sap.com/mac/app/e/pdf/preview/embed/ucQrx6G?ltr=a&rc=10&june2023
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
