Denial of service in Siemens SIMATIC Software



Published: 2018-04-02
Risk Low
Patch available YES
Number of vulnerabilities 1
CVE-ID CVE-2018-4832
CWE-ID CWE-20
Exploitation vector Network
Public exploit N/A
Vulnerable software
Subscribe
OpenPCS
Server applications / SCADA systems

SIMATIC BATCH
Server applications / SCADA systems

SIMATIC NET PC Software
Server applications / SCADA systems

SIMATIC PCS 7
Server applications / SCADA systems

SIMATIC Route Control
Server applications / SCADA systems

SIMATIC WinCC Runtime Professional
Server applications / SCADA systems

Siemens SIMATIC WinCC
Server applications / SCADA systems

Vendor Siemens

Security Bulletin

This security bulletin contains one low risk vulnerability.

1) Improper input validation

EUVDB-ID: #VU11448

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2018-4832

CWE-ID: CWE-20 - Improper Input Validation

Exploit availability: No

Description

The vulnerability allows a remote attacker to cause DoS condition on the target system.

The weakness exists due to improper input validation. A remote attacker can send specially crafted messages to the RPC service of the affected products and cause denial-of-service condition on the remote and local communication functionality.

Mitigation

Install update from vendor's website.

Vulnerable software versions

OpenPCS: 7.1 - 9.0

SIMATIC BATCH: 7.1 - 9.0

SIMATIC NET PC Software: All versions

SIMATIC PCS 7: 7.1 - 9.0

SIMATIC Route Control: 7.1 - 9.0

SIMATIC WinCC Runtime Professional: 13.0 - 14.0

Siemens SIMATIC WinCC: 7.0 - 7.4


CPE2.3 External links

http://www.siemens.com/global/en/home/products/services/cert.html#SecurityPublications

Q & A

Can this vulnerability be exploited remotely?

How the attacker can exploit this vulnerability?

Is there known malware, which exploits this vulnerability?



###SIDEBAR###