CVE-2021-40358

Name of the Vulnerable Software and Affected Versions SIMATIC PCS 7 versions V8.2 through V9.0 before SP3 UC04 SIMATIC PCS 7 versions V9.1 through V9.1 before SP1 SIMATIC WinCC versions V7.4 through V7.4 before SP1 Update 19 SIMATIC WinCC versions V7.5 through V7.5 before SP2 Update 5 SIMATIC WinCC versions V15 through V15 before SP1 Update 7 SIMATIC WinCC versions V16 through V16 before Update 5 SIMATIC WinCC versions V17 through V17 before Update 2

Description A vulnerability has been identified where legitimate file operations on the web server of the affected systems do not properly neutralize special elements within the pathname. This could allow an attacker to cause the pathname to resolve to a location outside of the restricted directory on the server, potentially reading, writing, or deleting unexpected critical files.

Recommendations For SIMATIC PCS 7 versions V8.2 through V9.0 before SP3 UC04, update to V9.0 SP3 UC04 or later. For SIMATIC PCS 7 versions V9.1 through V9.1 before SP1, update to V9.1 SP1 or later. For SIMATIC WinCC versions V7.4 through V7.4 before SP1 Update 19, update to V7.4 SP1 Update 19 or later. For SIMATIC WinCC versions V7.5 through V7.5 before SP2 Update 5, update to V7.5 SP2 Update 5 or later. For SIMATIC WinCC versions V15 through V15 before SP1 Update 7, update to V15 SP1 Update 7 or later. For SIMATIC WinCC versions V16 through V16 before Update 5, update to V16 Update 5 or later. For SIMATIC WinCC versions V17 through V17 before Update 2, update to V17 Update 2 or later.