CVE-2022-24287

Name of the Vulnerable Software and Affected Versions SIMATIC PCS 7 versions V8.2 through V9.1 SIMATIC PCS 7 version V9.0 through V9.0 SP3 UC06 SIMATIC PCS 7 version V9.1 through V9.1 SP1 UC01 SIMATIC WinCC Runtime Professional versions V16 and earlier SIMATIC WinCC Runtime Professional version V17 through V17 Upd4 SIMATIC WinCC version V7.3 SIMATIC WinCC version V7.4 through V7.4 SP1 Update 21 SIMATIC WinCC version V7.5 through V7.5 SP2 Update 8

Description A missing printer configuration on the host could allow an authenticated attacker to escape the WinCC Kiosk Mode. The vulnerability is related to the insecure initialization of a resource, which may allow an attacker to elevate their privileges by opening a printer dialog window in the vulnerable application, even if a printer is not installed.

Recommendations For SIMATIC PCS 7 versions V8.2 through V9.1, update to a version later than V9.1 SP1 UC01. For SIMATIC PCS 7 version V9.0, update to V9.0 SP3 UC06 or later. For SIMATIC PCS 7 version V9.1, update to V9.1 SP1 UC01 or later. For SIMATIC WinCC Runtime Professional versions V16 and earlier, update to a version later than V17 Upd4. For SIMATIC WinCC Runtime Professional version V17, update to V17 Upd4 or later. For SIMATIC WinCC version V7.3, update to a version later than V7.5 SP2 Update 8. For SIMATIC WinCC version V7.4, update to V7.4 SP1 Update 21 or later. For SIMATIC WinCC version V7.5, update to V7.5 SP2 Update 8 or later. As a temporary workaround, consider disabling the printer configuration on the host to minimize the risk of exploitation.