CVE-2024-52051

Name of the Vulnerable Software and Affected Versions: SIMATIC S7-PLCSIM versions 17 through 18 SIMATIC STEP 7 Safety versions 17 through 19 SIMATIC STEP 7 versions 17 through 19 SIMATIC WinCC Unified PC Runtime versions 18 through 19 SIMATIC WinCC Unified versions 17 through 19 SIMATIC WinCC versions 17 through 19 SIMOCODE ES versions 17 through 19 SIMOTION SCOUT TIA versions 5.4 SP3 through 5.6 SP1 SINAMICS Startdrive versions 17 through 19 SIRIUS Safety ES versions 17 through 19 SIRIUS Soft Starter ES versions 17 through 19 TIA Portal Cloud versions 17 through 19

Description: The affected devices do not properly sanitize user-controllable input when parsing user settings. This could allow an attacker to locally execute arbitrary commands in the host operating system with the privileges of the user. The issue is related to insufficient input validation, which may enable an attacker to execute arbitrary code.

Recommendations: For SIMATIC S7-PLCSIM versions 17 through 18, consider disabling the user settings parsing functionality until a patch is available. For SIMATIC STEP 7 Safety versions 17 through 19, restrict access to the user settings configuration to minimize the risk of exploitation. For SIMATIC STEP 7 versions 17 through 19, avoid using user-controllable input in the affected settings parsing functionality until the issue is resolved. For SIMATIC WinCC Unified PC Runtime versions 18 through 19, consider implementing additional input validation measures to prevent arbitrary command execution. For SIMATIC WinCC Unified versions 17 through 19, restrict access to the user settings configuration to minimize the risk of exploitation. For SIMATIC WinCC versions 17 through 19, avoid using user-controllable input in the affected settings parsing functionality until the issue is resolved. For SIMOCODE ES versions 17 through 19, consider disabling the user settings parsing functionality until a patch is available. For SIMOTION SCOUT TIA versions 5.4 SP3 through 5.6 SP1, restrict access to the user settings configuration to minimize the risk of exploitation. For SINAMICS Startdrive versions 17 through 19, avoid using user-controllable input in the affected settings parsing functionality until the issue is resolved. For SIRIUS Safety ES versions 17 through 19, consider implementing additional input validation measures to prevent arbitrary command execution. For SIRIUS Soft Starter ES versions 17 through 19, restrict access to the user settings configuration to minimize the risk of exploitation. For TIA Portal Cloud versions 17 through 19, consider disabling the user settings parsing functionality until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.