Security News > 2018 > March > Siemens Patches Flaws in SIMATIC Controllers, Mobile Apps

Siemens Patches Flaws in SIMATIC Controllers, Mobile Apps
2018-03-21 12:33

German industrial giant Siemens has released security patches for several of its SIMATIC products, including some controllers and a mobile application. Organizations using SIMATIC products were informed by both Siemens and ICS-CERT this week of a denial-of-service (DoS) vulnerability that can be exploited by sending specially crafted PROFINET DCP packets to affected systems. The flaw, tracked as CVE-2018-4843 and classified as medium severity, can be exploited by an attacker who has access to the network housing the targeted device. While DoS vulnerabilities are generally seen as less severe compared to code execution and other types of flaws, in the case of industrial control systems (ICS), they can have serious impact. The security hole affects several SIMATIC central processing units (CPUs) and software controllers, SINUMERIK CNC automation solutions, and Softnet PROFINET IO controllers. Siemens has released patches for some of the impacted systems, and provided workarounds and mitigations for the rest. Learn More at SecurityWeek’s ICS Cyber Security Conference Siemens also informed customers on Tuesday of an access control vulnerability affecting the Android and iOS versions of its SIMATIC WinCC OA UI mobile application. This app is designed to allow users to remotely access WinCC OA facilities from their mobile devices. “The latest update for the Android app and iOS app SIMATIC WinCC OA UI fix a security vulnerability which could allow read and write access from one HMI project cache folder to other HMI project cache folders within the app’s sandbox on the same mobile device,” Siemens wrote in its advisory. “This includes HMI project cache folders of other configured WinCC OA servers. Precondition for this scenario is that an attacker tricks an app user to connect to an attacker-controlled WinCC OA server,” it added. The SIMATIC WinCC OA UI application vulnerability was discovered by experts at IOActive and Embedi as part of their research into SCADA mobile apps. They analyzed applications from 34 vendors and found security holes in a vast majority of them. Related: Schneider Electric Patches Several Flaws in IGSS Products Related: Siemens Releases BIOS Updates to Patch Intel Chip Flaws Related: Serious Flaw Found in Many Siemens Industrial Products (function() { var po = document.createElement("script"); po.type = "text/javascript"; po.async = true; po.src = "https://apis.google.com/js/plusone.js"; var s = document.getElementsByTagName("script")[0]; s.parentNode.insertBefore(po, s); })(); Tweet Eduard Kovacs is a contributing editor at SecurityWeek. He worked as a high school IT teacher for two years before starting a career in journalism as Softpedia’s security news reporter. Eduard holds a bachelor’s degree in industrial informatics and a master’s degree in computer techniques applied in electrical engineering.Previous Columns by Eduard Kovacs:Siemens Patches Flaws in SIMATIC Controllers, Mobile Apps'Slingshot' Campaign Outed by Kaspersky is U.S. Operation Targeting Terrorists: ReportOrbitz Data Breach Impacts 880,000 Payment CardsOil and Gas Sector in Middle East Hit by Serious Security IncidentsCoverity Scan Hacked, Abused for Cryptocurrency Mining 2018 ICS Cyber Security Conference | Singapore [April. 24-26] 2018 ICS Cyber Security Conference | USA [Oct. 22-25] Register for the 2018 CISO Forum at Half Moon Bay sponsored links Tags: Mobile Security NEWS & INDUSTRY SCADA / ICS Vulnerabilities


News URL

http://feedproxy.google.com/~r/Securityweek/~3/St5f_O1dcIg/siemens-patches-flaws-simatic-controllers-mobile-apps

Related Vulnerability

DATE CVE VULNERABILITY TITLE RISK
2018-03-20 CVE-2018-4843 Improper Input Validation vulnerability in Siemens products
A vulnerability has been identified in SIMATIC S7-400 CPU 414-3 PN/DP V7 (All versions < V7.0.3), SIMATIC S7-400 CPU 414F-3 PN/DP V7 (All versions < V7.0.3), SIMATIC S7-400 CPU 416-3 PN/DP V7 (All versions < V7.0.3), SIMATIC S7-400 CPU 416F-3 PN/DP V7 (All versions < V7.0.3), SIMATIC CP 343-1 (incl.
low complexity
siemens CWE-20
6.5

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Siemens 2073 38 462 996 213 1709