4/5/2024 0 Comments Siemens starter softwareSIMATIC STEP 7 v5.X: Update to V5.7 or later.Siemens has released updates for the following product: Siemens reported this vulnerability to CISA. CRITICAL INFRASTRUCTURE SECTORS: Chemical, Critical Manufacturing, Energy, Food and Agriculture, Water and Wastewater Systems.A CVSS v3 base score of 7.3 has been calculated the CVSS vector string is ( AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:L). End Update A Part 1 of 2 - 4.2 VULNERABILITY OVERVIEW 4.2.1 INCORRECT PERMISSION ASSIGNMENT FOR CRITICAL RESOURCE CWE-732Īn attacker could change the content of certain metafiles and subsequently manipulate parameters or the behavior of devices that would be later configured by the affected software.ĬVE-2021-31894 has been assigned to this vulnerability. SINAMICS STARTER (containing STEP 7 OEM version): All versions prior to 5.4 SP2 HF1.SIMATIC STEP 7 V5.X: All versions prior to v5.7.SIMATIC PCS 7 V8.2 and earlier: All versions.Siemens reports this vulnerability affects the following SIMATIC software products: Successful exploitation of this vulnerability could allow an attacker to manipulate parameters or the behavior of devices configured by the affected software products. This updated advisory is a follow-up to the original advisory titled ICSA-21-194-06 Siemens SIMATIC Software Products that was published July 13, 2021, to the ICS webpage on. Vulnerability: Incorrect Permission Assignment for Critical Resource.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |