Siemens fixed a vulnerability in its SIMATIC Logon component that could allow attackers to circumvent user authentication under certain conditions, according to a report on the Siemens product CERT page.
SIMATIC WinCC, SIMATIC PCS 7, SIMATIC PDM, and SIMATIC IT provide SIMATIC Logon as component of the product. Installing the SIMATIC Logon update fixes the vulnerability for all products mentioned.
Products that suffer from the issue include:
• SIMATIC Logon: All versions < V1.5 SP3 Update 2 • The following products include affected versions of SIMATIC Logon: 1. SIMATIC WinCC: V7.x 2. SIMATIC WinCC Runtime Professional: All versions o SIMATIC PCS 7: All versions 3. SIMATIC PDM: All versions 4. SIMATIC IT: All versions SIMATIC Logon (SL) is a software application used for central user administration and access control in other SIMATIC applications. An attacker with knowledge of a valid user name, and physical or network access to the affected system could bypass the application-level authentication. CVE-2017-2684 is the case number for the vulnerability, which has a CVSS base score is 9.0. Siemens provides SIMATIC Logon V1.5 SP3 Update 2, and recommends users update to the new version. Customers that use recent versions of SIMATIC WinCC, SIMATIC PCS 7, SIMATIC IT, or SIMATIC PDM can install the new version of SIMATIC Logon without an update of these products as described in the compatibility note which can be accessed via the download link. Siemens recommends configuring the environment to the operational guidelines in order to run the devices in a protected IT environment. Click here to obtain the SIMATIC Logon V1.5 SP 3 Update 2.
Click here for an overview of the operational guidelines for Industrial Security.
Click here for information about Industrial Security by Siemens.
For further inquiries on vulnerabilities in Siemens products and solutions, please view the Siemens ProductCERT.