Yuan Li

Name of the Vulnerable Software and Affected Versions: SIMATIC S7-PLCSIM versions V16 through V17 SIMATIC STEP 7 Safety versions V16 through V19 SIMATIC STEP 7 versions V16 through V19 SIMATIC WinCC Unified versions V16 through V19 SIMATIC WinCC versions V16 through V19 SIMOCODE ES versions V16 through V19 SIMOTION SCOUT TIA versions V5.4 SP1 through V5.6 SP1 SINAMICS Startdrive versions V16 through V19 SIRIUS Safety ES versions V17 through V19 SIRIUS Soft Starter ES versions V17 through V19 TIA Portal Cloud versions V16 through V19 Description: The affected products do not properly sanitize user-controllable input when parsing log files, which could allow an attacker to cause a type confusion and execute arbitrary code within the affected application. This issue is related to deficiencies in the deserialization mechanism. Exploitation of this issue may allow an attacker to execute arbitrary code. Recommendations: For SIMATIC S7-PLCSIM versions V16 through V17, update to a patched version. For SIMATIC STEP 7 Safety versions V16 through V19, update to a patched version. For SIMATIC STEP 7 versions V16 through V19, update to a patched version. For SIMATIC WinCC Unified versions V16 through V19, update to a patched version. For SIMATIC WinCC versions V16 through V19, update to a patched version. For SIMOCODE ES versions V16 through V19, update to a patched version. For SIMOTION SCOUT TIA versions V5.4 SP1 through V5.6 SP1, update to a patched version. For SINAMICS Startdrive versions V16 through V19, update to a patched version. For SIRIUS Safety ES versions V17 through V19, update to a patched version. For SIRIUS Soft Starter ES versions V17 through V19, update to a patched version. For TIA Portal Cloud versions V16 through V19, update to a patched version. As a temporary workaround, consider restricting access to log file parsing functionality until a patch is available.