Overview
- Description
- A vulnerability has been identified in Opcenter Execution Discrete (All versions < V3.2), Opcenter Execution Foundation (All versions < V3.2), Opcenter Execution Process (All versions < V3.2), Opcenter Intelligence (All versions < V3.3), Opcenter Quality (All versions < V11.3), Opcenter RD&L (V8.0), SIMATIC Notifier Server for Windows (All versions), SIMATIC PCS neo (All versions < V3.0 SP1), SIMATIC STEP 7 (TIA Portal) V15 (All versions < V15.1 Update 5), SIMATIC STEP 7 (TIA Portal) V16 (All versions < V16 Update 2), SIMOCODE ES V15.1 (All versions < V15.1 Update 4), SIMOCODE ES V16 (All versions < V16 Update 1), Soft Starter ES V15.1 (All versions < V15.1 Update 3), Soft Starter ES V16 (All versions < V16 Update 1). A component within the affected application calls a helper binary with SYSTEM privileges during startup while the call path is not quoted. This could allow a local attacker with administrative privileges to execute code with SYSTEM level privileges.
- Source
- productcert@siemens.com
- NVD status
- Analyzed
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 6.7
- Impact score
- 5.9
- Exploitability score
- 0.8
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
- Severity
- MEDIUM
CVSS 2.0
- Type
- Primary
- Base score
- 7.2
- Impact score
- 10
- Exploitability score
- 3.9
- Vector string
- AV:L/AC:L/Au:N/C:C/I:C/A:C
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:siemens:opcenter_execution_discrete:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F33BF89C-F36E-4C8F-ABB9-579E2022DDA6",
"versionEndExcluding": "3.2"
},
{
"criteria": "cpe:2.3:a:siemens:opcenter_execution_foundation:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1DCE5E06-B75F-4D21-96CC-70DD373B1811",
"versionEndExcluding": "3.2"
},
{
"criteria": "cpe:2.3:a:siemens:opcenter_execution_process:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C4DD5C57-5877-495C-A01E-747E5DCED9F7",
"versionEndExcluding": "3.2"
},
{
"criteria": "cpe:2.3:a:siemens:opcenter_intelligence:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "FA9BAFAE-C26A-4435-80C1-508F0A3EF768"
},
{
"criteria": "cpe:2.3:a:siemens:opcenter_quality:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9DB2F53B-817C-41F3-9B52-85DE702ACCE5",
"versionEndExcluding": "11.3"
},
{
"criteria": "cpe:2.3:a:siemens:opcenter_rd\\&l:8.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "EE037602-C9E8-45D5-9A44-3B73052F478E"
},
{
"criteria": "cpe:2.3:a:siemens:simatic_notifier_server:*:*:*:*:*:windows:*:*",
"vulnerable": true,
"matchCriteriaId": "DE74021F-CE57-42CC-8093-E1B0352410FA"
},
{
"criteria": "cpe:2.3:a:siemens:simatic_pcs_neo:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D61D4B81-7F51-49BE-83DD-D2C28D23B0EA"
},
{
"criteria": "cpe:2.3:a:siemens:simatic_step_7:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E6D968D9-2A64-4E1C-824F-6508AEC6789D",
"versionEndExcluding": "16"
},
{
"criteria": "cpe:2.3:a:siemens:simatic_step_7:16:-:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "66CB66B9-176E-4FA3-BC67-E7C5972A307C"
},
{
"criteria": "cpe:2.3:a:siemens:simatic_step_7:16:update1:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "EF2D6947-576B-4CA7-B4E4-F0B428FA5ABB"
},
{
"criteria": "cpe:2.3:a:siemens:simocode_es:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CE934FDC-666F-4D9D-9C03-2896875F0A0D"
},
{
"criteria": "cpe:2.3:a:siemens:soft_starter_es:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "FA57190F-97BA-4D1D-BC73-F37162B775F9"
}
],
"operator": "OR"
}
]
}
]