Siemens mitigated a vulnerability in its SINUMERIK Integrate and SINUMERIK Operate that could under certain conditions allow attackers in a privileged network position to capture and modify network traffic protected with TLS, according to a report with Siemens ProductCERT.
The vulnerability could allow an attacker to read and manipulate data in TLS sessions while performing a man-in-the-middle (MITM) attack. Clients only end up affected if it is using HTTPs.
The following products suffer from the issue:
• SINUMERIK Integrate Access MyMachine/Ethernet with AMM Service Engineer Client (ActiveX): All versions
• SINUMERIK Integrate Access MyMachine/Ethernet and Analyze MyCondition with SINUMERIK Integrate Operate Client:
— All versions between 2.0.3.00.016 (including) and 2.0.6 (excluding)
— All versions between 3.0.4.00.032 (including) and 3.0.6 (excluding) Affected SINUMERIK Integrate Operate clients are included in the following
SINUMERIK Operate releases:
— All versions between V4.5 SP6 (including) and V4.5 SP6 Hotfix 8 (excluding)
— All versions between V4.7 SP2 Hotfix 1(including) and V4.7 SP4 (excluding)
SINUMERIK Integrate product suite facilitates simple networking of machine tools in the IT of the production landscape.
SINUMERIK Operate is a standard Human Machine Interface system for SINUMERIK numerical controls.
The vulnerability case number is CVE-2017-2685 and it has a CVSS base score of 7.4.
Siemens has the following updates for affected SINUMERIK Integrate and SINUMERIK Operate versions:
• SINUMERIK Integrate Access MyMachine /Ethernet and Analyze MyCondition with SINUMERIK Operate V4.7:
— Update to SINUMERIK Operate to V4.7 SP4
— Update SINUMERIK Integrate Operate Client to V3.0.6
• SINUMERIK Operate V4.5:
— Update to SINUMERIK Operate to V4.5 SP6 Hotfix 8 , or
— Update SINUMERIK Integrate Operate Client to V2.0.6
SINUMERIK Integrate Access MyMachine /Ethernet with AMM Service Engineer Client (ActiveX): Replace with AMM Service Client V18.104.22.168 (Replacement will automatically install when connecting to SINUMERIK Integrate V4.1 SP5 or newer)
As a general security measure Siemens recommends to configure the environment according to its operational guidelines in order to run the devices in a protected IT environment.