CVE-2022-23450

Name of the Vulnerable Software and Affected Versions SIMATIC Energy Manager Basic versions prior to V7.3 Update 1 SIMATIC Energy Manager PRO versions prior to V7.3 Update 1

Description The issue is related to insecure deserialization of user-supplied content, allowing an unauthenticated attacker to execute arbitrary code on the device with SYSTEM privileges. This can be achieved by sending a maliciously crafted serialized object to the affected system. The vulnerability is linked to the use of an insecure class, BinaryFormatter, which does not clear the types of deserialized classes and can create arbitrary classes, leading to the execution of arbitrary code when deserialized.

Recommendations For SIMATIC Energy Manager Basic versions prior to V7.3 Update 1, update to V7.3 Update 1 to resolve the issue. For SIMATIC Energy Manager PRO versions prior to V7.3 Update 1, update to V7.3 Update 1 to resolve the issue. As a temporary workaround, consider restricting access to the vulnerable service, BDataWIndowsService, to minimize the risk of exploitation. Avoid using the vulnerable BinaryFormatter class until the issue is resolved.