Name of the Vulnerable Software and Affected Versions:

SIMATIC BATCH V9.1 (All versions)

SIMATIC Information Server 2020 (All versions < V2020 SP2 Update 5)

SIMATIC Information Server 2022 (All versions < V2022 SP1 Update 2)

SIMATIC PCS 7 V9.1 (All versions < V9.1 SP2 UC06)

SIMATIC Process Historian 2020 (All versions < V2020 SP2 Update 5)

SIMATIC Process Historian 2022 (All versions < V2022 SP1 Update 2)

SIMATIC WinCC Runtime Professional V18 (All versions < V18 Update 5)

SIMATIC WinCC Runtime Professional V19 (All versions < V19 Update 3)

SIMATIC WinCC V7.4 (All versions)

SIMATIC WinCC V7.5 (All versions < V7.5 SP2 Update 18)

SIMATIC WinCC V8.0 (All versions < V8.0 Update 5)

Description:

A vulnerability has been identified in the affected products, which run their DB server with elevated privileges. This could allow an authenticated attacker to execute arbitrary OS commands with administrative privileges. The issue is related to errors in privilege management. Exploitation of the vulnerability may allow a remote attacker to execute arbitrary code with elevated privileges.

Recommendations:

For SIMATIC BATCH V9.1, update to a version that fixes the issue.

For SIMATIC Information Server 2020, update to V2020 SP2 Update 5 or later.

For SIMATIC Information Server 2022, update to V2022 SP1 Update 2 or later.

For SIMATIC PCS 7 V9.1, update to V9.1 SP2 UC06 or later.

For SIMATIC Process Historian 2020, update to V2020 SP2 Update 5 or later.

For SIMATIC Process Historian 2022, update to V2022 SP1 Update 2 or later.

For SIMATIC WinCC Runtime Professional V18, update to V18 Update 5 or later.

For SIMATIC WinCC Runtime Professional V19, update to V19 Update 3 or later.

For SIMATIC WinCC V7.4, update to a version that fixes the issue.

For SIMATIC WinCC V7.5, update to V7.5 SP2 Update 18 or later.

For SIMATIC WinCC V8.0, update to V8.0 Update 5 or later.