Security Features in SIMATIC STEP 7

#VU40843 Security Features in SIMATIC STEP 7

Published: 2015-04-06 | Updated: 2020-08-09

Vulnerability identifier: #VU40843

Vulnerability risk: Medium

CVSSv3.1: 6.4 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L/E:U/RL:O/RC:C]

CVE-ID: CVE-2015-1601

CWE-ID: CWE-254

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
SIMATIC STEP 7
Server applications / SCADA systems

Vendor: Siemens

Description

The vulnerability allows a remote non-authenticated attacker to read and manipulate data.

Siemens SIMATIC STEP 7 (TIA Portal) 12 and 13 before 13 SP1 Upd1 allows man-in-the-middle attackers to obtain sensitive information or modify transmitted data via unspecified vectors.

Mitigation
Install update from vendor's website.

Vulnerable software versions

SIMATIC STEP 7: 12 - 13

External links
http://www.securityfocus.com/bid/72691
http://www.siemens.com/innovation/pool/de/forschungsfelder/siemens_security_advisory_ssa-315836.pdf
http://cert-portal.siemens.com/productcert/pdf/ssa-487246.pdf

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Security Features in Siemens SIMATIC STEP 7