#VU84395 Improper Protection against Electromagnetic Fault Injection in Siemens products - CVE-2022-42784

Vulnerability identifier: #VU84395

Vulnerability risk: Low

CVSSv4.0: CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2022-42784

CWE-ID: CWE-1319

Exploitation vector: Local access

Exploit availability: No public exploit available

Vulnerable software:
LOGO! 12/24RCE
LOGO! 12/24RCEo
LOGO! 24CE
LOGO! 24CEo
LOGO! 24RCE
LOGO! 24RCEo
LOGO! 230RCE
LOGO! 230RCEo
SIPLUS LOGO! 12/24RCE
SIPLUS LOGO! 12/24RCEo
SIPLUS LOGO! 24CE
SIPLUS LOGO! 24CEo
SIPLUS LOGO! 24RCE
SIPLUS LOGO! 24RCEo
SIPLUS LOGO! 230RCE
SIPLUS LOGO! 230RCEo

Software vendor:
Siemens

The vulnerability allows a local attacker to compromise the system.

The vulnerability exists due to an electromagnetic fault injection. An attacker with physical access can dump and debug the firmware and inject public keys of custom created key pairs which are then signed by the product CA.

Cybersecurity Help is currently unaware of any official solution to address this vulnerability.

• https://cert-portal.siemens.com/productcert/pdf/ssa-844582.pdf