Siemens has a recommendation to handle a deserialization of untrusted data vulnerability in its LOGO! Soft Comfort, according to a report from NCCIC.
Successful exploitation of this vulnerability could allow an attacker to execute arbitrary code if the attacker tricks a legitimate user into opening a manipulated project. axt working with iDefense Labs reported this vulnerability to Siemens.
The vulnerability affects the following engineering software to configure and program LOGO! controllers: LOGO! Soft Comfort, all versions.
In order to exploit the vulnerability, a valid user must open a manipulated project file.
CVE-2019-10924 is the case number assigned to this vulnerability, which has a CVSS v3 base score of 7.8.
The product sees use mainly in the commercial facilities and transportation systems sectors. It also sees action on a global basis.
No known public exploits specifically target this vulnerability. This vulnerability is not exploitable remotely. However, an attacker with low skill level could leverage the vulnerability.
Siemens recommends users only open projects from trusted sources.
As a general security measure, Siemens recommends protecting network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends configuring the environment according to Siemens’ operational guidelines for industrial security and following the recommendations in the product manuals.
Click here for additional information on industrial security by Siemens.
Click her for further inquiries on security vulnerabilities in Siemens products and solutions.
For more information on this vulnerability and associated software updates, see Siemens security advisory SSA-102144.