SCADA Vulnerabilities & Exposures (SVE)

CRITIFENCE® SCADA Vulnerabilities and Exposures Database (SVE)

[SVE-439999731] Siemens SIMATIC Authentication Bypass

Date Type Platform Author EDB-ID CVE-ID OSVDB-ID Download App SIS Signature
2017-02-14OtherSiemensSiemensN/AN/AN/AN/A

Source

						
							
								
#
# Siemens SIMATIC Authentication Bypass
#


### VULNERABLE VENDOR
Siemens


### VULNERABLE PRODUCT
SIMATIC



### RESEARCHER



### AFFECTED PRODUCTS

Siemens reports that the vulnerability affects the following software applications used for central user administration:

SIMATIC Logon: All versions < V1.5 SP3 Update 2
The following products include affected versions of SIMATIC Logon:

SIMATIC WinCC: V7.x,
SIMATIC WinCC Runtime Professional: All versions,
SIMATIC PCS 7: All versions,
SIMATIC PDM: All versions, and
SIMATIC IT: All versions.



### IMPACT

Successful exploitation of this vulnerability could allow attackers to circumvent user authentication under certain conditions.



### VULNERABILITY OVERVIEW



### BACKGROUND

Critical Infrastructure Sectors: Chemical, Energy, Food and Agriculture, and Water and Wastewater Systems
Countries/Areas Deployed: Deployed worldwide
Company Headquarters Location: Germany




### MITIGATION

Siemens provides SIMATIC Logon V1.5 SP3 Update 2 and recommends that users update to the new version. Customers that use recent versions of SIMATIC WinCC, SIMATIC PCS 7, SIMATIC IT, or SIMATIC PDM can install the new version of SIMATIC Logon without an update of these products as described in the compatibility note that can be accessed via the download link below:

https://support.industry.siemens.com/cs/ww/en/view/109744966


For more information on this vulnerability and more detailed mitigation instructions, see Siemens Security Advisory SSA-931064 at the following location:

http://www.siemens.com/cert/en/cert-security-advisories.htm


As a general security measure Siemens strongly recommends configuring the environment according to Siemens' operational guidelines in order to run the devices in a protected IT environment.

https://www.siemens.com/cert/operational-guidelines-industrial-security