CVE-2022-24287

Published May 20, 2022

Last updated a year ago

CVSS high 7.8

Overview

Description: A vulnerability has been identified in SIMATIC PCS 7 V8.2 (All versions), SIMATIC PCS 7 V9.0 (All versions < V9.0 SP3 UC06), SIMATIC PCS 7 V9.1 (All versions < V9.1 SP1 UC01), SIMATIC WinCC Runtime Professional V16 and earlier (All versions), SIMATIC WinCC Runtime Professional V17 (All versions < V17 Upd4), SIMATIC WinCC V7.3 (All versions), SIMATIC WinCC V7.4 (All versions < V7.4 SP1 Update 21), SIMATIC WinCC V7.5 (All versions < V7.5 SP2 Update 8). A missing printer configuration on the host could allow an authenticated attacker to escape the WinCC Kiosk Mode.
Source: productcert@siemens.com
NVD status: Modified

Risk scores

CVSS 3.1

Type: Primary
Base score: 7.8
Impact score: 5.9
Exploitability score: 1.8
Vector string: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Severity: HIGH

CVSS 2.0

Type: Primary
Base score: 4.6
Impact score: 6.4
Exploitability score: 3.9
Vector string: AV:L/AC:L/Au:N/C:P/I:P/A:P

Weaknesses

productcert@siemens.com: CWE-1188
nvd@nist.gov: CWE-1188

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:siemens:simatic_pcs_7:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DFA18372-7E7D-4C51-8FA0-EE193DECB88D",
            "versionEndIncluding": "9.0"
          },
          {
            "criteria": "cpe:2.3:a:siemens:simatic_pcs_7:9.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8852CFC7-FE90-4654-9F85-9181884F948E"
          },
          {
            "criteria": "cpe:2.3:a:siemens:simatic_wincc:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CA2E9785-246F-496B-9139-02E2F4003352",
            "versionEndIncluding": "7.4"
          },
          {
            "criteria": "cpe:2.3:a:siemens:simatic_wincc:7.5:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E79DA14E-419C-49BA-8E4F-2907E1D8937F"
          },
          {
            "criteria": "cpe:2.3:a:siemens:simatic_wincc:7.5:sp1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "81F9C13C-065C-4E40-BB46-687D791348A9"
          },
          {
            "criteria": "cpe:2.3:a:siemens:simatic_wincc:7.5:sp1_update1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5CF06E69-0A23-418D-B0EC-574DACBB4DD9"
          },
          {
            "criteria": "cpe:2.3:a:siemens:simatic_wincc:7.5:sp1_update2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9164EAC1-C416-4F1F-A910-CE84A167A6D1"
          },
          {
            "criteria": "cpe:2.3:a:siemens:simatic_wincc:7.5:sp2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3422B714-DB0F-4EE3-A7D4-9A0165214563"
          },
          {
            "criteria": "cpe:2.3:a:siemens:simatic_wincc:7.5:sp2_update1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "70B79B00-F61D-4F10-AD7B-74718F061D9E"
          },
          {
            "criteria": "cpe:2.3:a:siemens:simatic_wincc:7.5:sp2_update2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A8766442-CC8D-4221-89B8-F75D195F71E8"
          },
          {
            "criteria": "cpe:2.3:a:siemens:simatic_wincc:7.5:sp2_update3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "26C08FB9-AFEB-4A53-AAB3-37C9717B30C5"
          },
          {
            "criteria": "cpe:2.3:a:siemens:simatic_wincc:7.5:sp2_update4:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "68896900-7FCC-4BFB-B787-8992B459F00D"
          },
          {
            "criteria": "cpe:2.3:a:siemens:simatic_wincc:7.5:sp2_update5:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1059B529-02F0-4C85-A35E-2282546FA990"
          },
          {
            "criteria": "cpe:2.3:a:siemens:simatic_wincc:7.5:sp2_update6:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "938D44C5-7B26-4400-970D-B3AA50DDD055"
          },
          {
            "criteria": "cpe:2.3:a:siemens:simatic_wincc:7.5:sp2_update7:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E9E28D92-0643-4967-94C5-8B8F414158A3"
          },
          {
            "criteria": "cpe:2.3:a:siemens:simatic_wincc_runtime_professional:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EC34D005-A65F-4AFE-BF1F-53A5AC950A22",
            "versionEndIncluding": "16"
          },
          {
            "criteria": "cpe:2.3:a:siemens:simatic_wincc_runtime_professional:17:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9B76C5CC-652F-4117-8214-E219C12AA082"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 3.1

CVSS 2.0

Weaknesses

Social media

Configurations

References