#VU65272 Command Injection in Siemens products - CVE-2022-34820
Published: July 13, 2022 / Updated: July 14, 2022
Vulnerability identifier: #VU65272
Vulnerability risk: Low
CVSSv4.0: CVSS:4.0/AV:A/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2022-34820
CWE-ID: CWE-77
Exploitation vector: Adjecent network
Exploit availability:
No public exploit available
Vulnerable software:
SIMATIC CP 1242-7 V2
SIMATIC CP 1243-1
SIMATIC CP 1243-7 LTE EU
SIMATIC CP 1243-7 LTE US
SIMATIC CP 1243-8 IRC
SIMATIC CP 1542SP-1 IRC
SIMATIC CP 1543SP-1
SIPLUS ET 200SP CP 1542SP-1 IRC TX RAIL
SIPLUS ET 200SP CP 1543SP-1 ISEC
SIPLUS ET 200SP CP 1543SP-1 ISEC TX RAIL
SIPLUS NET CP 1242-7 V2
SIPLUS S7-1200 CP 1243-1
SIPLUS S7-1200 CP 1243-1 RAIL
SIMATIC CP 1543-1
SIPLUS NET CP 1543-1
SIMATIC CP 1242-7 V2
SIMATIC CP 1243-1
SIMATIC CP 1243-7 LTE EU
SIMATIC CP 1243-7 LTE US
SIMATIC CP 1243-8 IRC
SIMATIC CP 1542SP-1 IRC
SIMATIC CP 1543SP-1
SIPLUS ET 200SP CP 1542SP-1 IRC TX RAIL
SIPLUS ET 200SP CP 1543SP-1 ISEC
SIPLUS ET 200SP CP 1543SP-1 ISEC TX RAIL
SIPLUS NET CP 1242-7 V2
SIPLUS S7-1200 CP 1243-1
SIPLUS S7-1200 CP 1243-1 RAIL
SIMATIC CP 1543-1
SIPLUS NET CP 1543-1
Software vendor:
Siemens
Siemens
Description
The vulnerability allows a remote user to execute arbitrary commands on the target system.
The vulnerability exists due to the affected application does not correctly escape some user provided fields during the authentication process. A remote administrator on the local network can pass specially crafted data to the application and execute arbitrary commands on the target system.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
Remediation
Install update from vendor's website.