#VU71086 External Control of File Name or Path in Siemens Automation License Manager - CVE-2022-43513

Cybersecurity Help s.r.o.

Published: 2023-01-11 | Updated: 2023-01-12

Vulnerability identifier: #VU71086

Vulnerability risk: High

CVSSv4.0: 6.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:L/SC:N/SI:N/SA:N/E:U/U:Amber]

CVE-ID: CVE-2022-43513

CWE-ID: CWE-73

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Siemens Automation License Manager
Server applications / SCADA systems

Vendor: Siemens

Description

The vulnerability allows a remote attacker to compromise the target system.

The vulnerability exists due to application allows an attacker to control path of the files to rename. A remote attacker can rename and move files as SYSTEM user.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

Siemens Automation License Manager: 5.0 - 6.0

External links
https://cert-portal.siemens.com/productcert/pdf/ssa-476715.pdficsa-23-012-10

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in Siemens Telecontrol Server Basic

Multiple vulnerabilities in Siemens Automation License Manager