CVE-2018-11457

Name of the Vulnerable Software and Affected Versions SINUMERIK 828D V4.7 versions prior to V4.7 SP6 HF1 SINUMERIK 840D sl V4.7 versions prior to V4.7 SP6 HF5 SINUMERIK 840D sl V4.8 versions prior to V4.8 SP3

Description The issue is related to a dynamic memory overflow in the Siemens Sinumerik CNC software. Exploitation of this issue could allow a remote attacker to execute arbitrary code with privileged permissions by sending specially crafted network requests to port 4842/TCP. The integrated web server on this port could be exploited if it is manually opened in the firewall configuration. Successful exploitation requires no privileges and no user interaction, potentially compromising the confidentiality, integrity, and availability of the web server.

Recommendations For SINUMERIK 828D V4.7 versions prior to V4.7 SP6 HF1, update to V4.7 SP6 HF1 or later to resolve the issue. For SINUMERIK 840D sl V4.7 versions prior to V4.7 SP6 HF5, update to V4.7 SP6 HF5 or later to resolve the issue. For SINUMERIK 840D sl V4.8 versions prior to V4.8 SP3, update to V4.8 SP3 or later to resolve the issue. As a temporary workaround, consider restricting access to port 4842/TCP to minimize the risk of exploitation.