CVE-2021-25674

Name of the Vulnerable Software and Affected Versions SIMATIC S7-PLCSIM V5.4 (All versions)

Description A Denial-of-Service condition can be caused in the application by an attacker with local access to the system when it is used to open a specially crafted file. This can lead to a NULL pointer deference condition, causing the application to terminate unexpectedly and requiring a restart to restore the service.

Recommendations For SIMATIC S7-PLCSIM V5.4, avoid opening specially crafted files until a fix is available. As a temporary workaround, consider implementing access controls to limit local access to the system and prevent potential attackers from exploiting this issue.