CVE-2020-7588

Name of the Vulnerable Software and Affected Versions Opcenter Execution Discrete versions prior to V3.2 Opcenter Execution Foundation versions prior to V3.2 Opcenter Execution Process versions prior to V3.2 Opcenter Intelligence versions prior to V3.3 Opcenter Quality versions prior to V11.3 Opcenter RD&L version V8.0 SIMATIC IT LMS versions prior to V2.6 SIMATIC IT Production Suite versions prior to V8.0 SIMATIC Notifier Server for Windows all versions SIMATIC PCS neo versions prior to V3.0 SP1 SIMATIC STEP 7 (TIA Portal) V15 versions prior to V15.1 Update 5 SIMATIC STEP 7 (TIA Portal) V16 versions prior to V16 Update 2 SIMOCODE ES V15.1 versions prior to V15.1 Update 4 SIMOCODE ES V16 versions prior to V16 Update 1 Soft Starter ES V15.1 versions prior to V15.1 Update 3 Soft Starter ES V16 versions prior to V16 Update 1

Description The issue is related to insufficient input validation, which could allow a remote attacker to cause a partial denial-of-service, resulting in the affected service restarting itself. This can be achieved by sending a specially crafted packet to the affected service.

Recommendations For Opcenter Execution Discrete versions prior to V3.2, update to version V3.2 or later. For Opcenter Execution Foundation versions prior to V3.2, update to version V3.2 or later. For Opcenter Execution Process versions prior to V3.2, update to version V3.2 or later. For Opcenter Intelligence versions prior to V3.3, update to version V3.3 or later. For Opcenter Quality versions prior to V11.3, update to version V11.3 or later. For Opcenter RD&L version V8.0, update to a version that includes the fix for this issue. For SIMATIC IT LMS versions prior to V2.6, update to version V2.6 or later. For SIMATIC IT Production Suite versions prior to V8.0, update to version V8.0 or later. For SIMATIC Notifier Server for Windows, update to a version that includes the fix for this issue. For SIMATIC PCS neo versions prior to V3.0 SP1, update to version V3.0 SP1 or later. For SIMATIC STEP 7 (TIA Portal) V15 versions prior to V15.1 Update 5, update to version V15.1 Update 5 or later. For SIMATIC STEP 7 (TIA Portal) V16 versions prior to V16 Update 2, update to version V16 Update 2 or later. For SIMOCODE ES V15.1 versions prior to V15.1 Update 4, update to version V15.1 Update 4 or later. For SIMOCODE ES V16 versions prior to V16 Update 1, update to version V16 Update 1 or later. For Soft Starter ES V15.1 versions prior to V15.1 Update 3, update to version V15.1 Update 3 or later. For Soft Starter ES V16 versions prior to V16 Update 1, update to version V16 Update 1 or later.