Lucene search

[email protected]CVE-2021-31894

HistoryJul 13, 2021 - 11:15 a.m.

CVE-2021-31894

2021-07-1311:15:09

CWE-732

[email protected]

web.nvd.nist.gov

cve-2021-31894

simatic pcs 7

simatic pdm

simatic step 7

sinamics starter

vulnerability

nvd

configuration

write permission

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

8.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

8.5 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

12.7%

JSON

A vulnerability has been identified in SIMATIC PCS 7 V8.2 and earlier (All versions), SIMATIC PCS 7 V9.X (All versions < V9.1 SP2), SIMATIC PDM (All versions < V9.2 SP2), SIMATIC STEP 7 V5.X (All versions < V5.7), SINAMICS STARTER (containing STEP 7 OEM version) (All versions < V5.4 SP2 HF1). A directory containing metafiles relevant to devices’ configurations has write permissions. An attacker could leverage this vulnerability by changing the content of certain metafiles and subsequently manipulate parameters or behavior of devices that would be later configured by the affected software.

Affected configurations

NVD

Node

siemenssimatic_pcs_7_firmwareRange≤8.2

siemenssimatic_pcs_7_firmwareMatch9.0

AND

siemenssimatic_pcs_7Match-

Node

siemenssimatic_pdm_firmwareMatch-

AND

siemenssimatic_pdmMatch-

Node

siemenssimatic_step_7_firmwareRange5.0–5.7

AND

siemenssimatic_step_7Match-

Node

siemenssinamics_starter_firmwareRange<5.4

siemenssinamics_starter_firmwareMatch5.4-

siemenssinamics_starter_firmwareMatch5.4hf1

siemenssinamics_starter_firmwareMatch5.4hf2

siemenssinamics_starter_firmwareMatch5.4sp1

siemenssinamics_starter_firmwareMatch5.4sp1_hf1

siemenssinamics_starter_firmwareMatch5.4sp2

AND

siemenssinamics_starterMatch-

CPENameOperatorVersion
siemens:simatic_pcs_7_firmwaresiemens simatic pcs 7 firmwarele8.2
siemens:simatic_pcs_7_firmwaresiemens simatic pcs 7 firmwareeq9.0

CPE	Name	Operator	Version
siemens:simatic_pcs_7_firmware	siemens simatic pcs 7 firmware	le	8.2
siemens:simatic_pcs_7_firmware	siemens simatic pcs 7 firmware	eq	9.0

CNA Affected

[
  {
    "product": "SIMATIC PCS 7 V8.2 and earlier",
    "vendor": "Siemens",
    "versions": [
      {
        "status": "affected",
        "version": "All versions"
      }
    ]
  },
  {
    "product": "SIMATIC PCS 7 V9.X",
    "vendor": "Siemens",
    "versions": [
      {
        "status": "affected",
        "version": "All versions < V9.1 SP2"
      }
    ]
  },
  {
    "product": "SIMATIC PDM",
    "vendor": "Siemens",
    "versions": [
      {
        "status": "affected",
        "version": "All versions < V9.2 SP2"
      }
    ]
  },
  {
    "product": "SIMATIC STEP 7 V5.X",
    "vendor": "Siemens",
    "versions": [
      {
        "status": "affected",
        "version": "All versions < V5.7"
      }
    ]
  },
  {
    "product": "SINAMICS STARTER (containing STEP 7 OEM version)",
    "vendor": "Siemens",
    "versions": [
      {
        "status": "affected",
        "version": "All versions <  V5.4 SP2 HF1"
      }
    ]
  }
]

References

cert-portal.siemens.com/productcert/pdf/ssa-661034.pdf

Social References

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

8.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

8.5 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

12.7%

JSON

Related for CVE-2021-31894

ics1 cnvd1 cvelist1 nvd1 prion1