PT-2022-22372 · Siemens · Simatic Cp 1243-1+13
Published
2022-07-12
·
Updated
2023-06-29
·
CVE-2022-34820
CVSS v2.0
9.3
High
| Vector | AV:N/AC:M/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
SIMATIC CP 1242-7 V2 versions prior to V3.3.46
SIMATIC CP 1243-1 versions prior to V3.3.46
SIMATIC CP 1243-7 LTE EU versions prior to V3.3.46
SIMATIC CP 1243-7 LTE US versions prior to V3.3.46
SIMATIC CP 1243-8 IRC versions prior to V3.3.46
SIMATIC CP 1542SP-1 IRC versions 2.0 through 2.2.28
SIMATIC CP 1543-1 versions prior to V3.0.22
SIMATIC CP 1543SP-1 versions 2.0 through 2.2.28
SIPLUS ET 200SP CP 1542SP-1 IRC TX RAIL versions 2.0 through 2.2.28
SIPLUS ET 200SP CP 1543SP-1 ISEC versions 2.0 through 2.2.28
SIPLUS ET 200SP CP 1543SP-1 ISEC TX RAIL versions 2.0 through 2.2.28
SIPLUS NET CP 1242-7 V2 versions prior to V3.3.46
SIPLUS NET CP 1543-1 versions prior to V3.0.22
SIPLUS S7-1200 CP 1243-1 versions prior to V3.3.46
SIPLUS S7-1200 CP 1243-1 RAIL versions prior to V3.3.46
Description
The application does not correctly escape some user-provided fields during the authentication process. This could allow an attacker to inject custom commands and execute arbitrary code with elevated privileges.
Recommendations
For SIMATIC CP 1242-7 V2 versions prior to V3.3.46, update to version V3.3.46 or later.
For SIMATIC CP 1243-1 versions prior to V3.3.46, update to version V3.3.46 or later.
For SIMATIC CP 1243-7 LTE EU versions prior to V3.3.46, update to version V3.3.46 or later.
For SIMATIC CP 1243-7 LTE US versions prior to V3.3.46, update to version V3.3.46 or later.
For SIMATIC CP 1243-8 IRC versions prior to V3.3.46, update to version V3.3.46 or later.
For SIMATIC CP 1542SP-1 IRC versions 2.0 through 2.2.28, update to version 2.2.28 or later.
For SIMATIC CP 1543-1 versions prior to V3.0.22, update to version V3.0.22 or later.
For SIMATIC CP 1543SP-1 versions 2.0 through 2.2.28, update to version 2.2.28 or later.
For SIPLUS ET 200SP CP 1542SP-1 IRC TX RAIL versions 2.0 through 2.2.28, update to version 2.2.28 or later.
For SIPLUS ET 200SP CP 1543SP-1 ISEC versions 2.0 through 2.2.28, update to version 2.2.28 or later.
For SIPLUS ET 200SP CP 1543SP-1 ISEC TX RAIL versions 2.0 through 2.2.28, update to version 2.2.28 or later.
For SIPLUS NET CP 1242-7 V2 versions prior to V3.3.46, update to version V3.3.46 or later.
For SIPLUS NET CP 1543-1 versions prior to V3.0.22, update to version V3.0.22 or later.
For SIPLUS S7-1200 CP 1243-1 versions prior to V3.3.46, update to version V3.3.46 or later.
For SIPLUS S7-1200 CP 1243-1 RAIL versions prior to V3.3.46, update to version V3.3.46 or later.
Fix
Improper Encoding or Escaping of Output
Command Injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Simatic Cp 1242-7 V2
Simatic Cp 1243-1
Simatic Cp 1243-7 Lte Eu
Simatic Cp 1243-7 Lte Us
Simatic Cp 1243-8 Irc
Simatic Cp 1542Sp-1 Irc
Simatic Cp 1543Sp-1
Siplus Et 200Sp Cp 1542Sp-1 Irc Tx Rail
Siplus Et 200Sp Cp 1543Sp-1 Isec
Siplus Et 200Sp Cp 1543Sp-1 Isec Tx Rail
Siplus Net Cp 1242-7 V2
Siplus Net Cp 1543-1
Siplus S7-1200 Cp 1243-1
Siplus S7-1200 Cp 1243-1 Rail