CVE-2024-56181

Name of the Vulnerable Software and Affected Versions SIMATIC Field PG M5 (All versions) SIMATIC IPC BX-21A versions prior to V31.01.07 SIMATIC IPC BX-32A versions prior to V29.01.07 SIMATIC IPC BX-39A versions prior to V29.01.07 SIMATIC IPC BX-59A versions prior to V32.01.04 SIMATIC IPC PX-32A versions prior to V29.01.07 SIMATIC IPC PX-39A versions prior to V29.01.07 SIMATIC IPC PX-39A PRO versions prior to V29.01.07 SIMATIC IPC RC-543B (All versions) SIMATIC IPC RW-543A (All versions) SIMATIC IPC127E (All versions) SIMATIC IPC227E (All versions) SIMATIC IPC227G (All versions) SIMATIC IPC277E (All versions) SIMATIC IPC277G (All versions) SIMATIC IPC277G PRO (All versions) SIMATIC IPC3000 SMART V3 (All versions) SIMATIC IPC327G (All versions) SIMATIC IPC347G (All versions) SIMATIC IPC377G (All versions) SIMATIC IPC427E (All versions) SIMATIC IPC477E (All versions) SIMATIC IPC477E PRO (All versions) SIMATIC IPC527G (All versions) SIMATIC IPC627E versions prior to V25.02.15 SIMATIC IPC647E versions prior to V25.02.15 SIMATIC IPC677E versions prior to V25.02.15 SIMATIC IPC847E versions prior to V25.02.15 SIMATIC ITP1000 (All versions)

Description The affected devices have insufficient protection mechanisms for the EFI (Extensible Firmware Interface) variables stored on the device. This could allow an authenticated attacker to alter the secure boot configuration without proper authorization by directly communicating with the flash controller.

Recommendations As a temporary workaround, consider restricting access to the flash controller until a patch is available. For SIMATIC Field PG M5 and other devices with all versions affected, update to a version that includes a fix for this issue when available. For devices with versions prior to a specified version (e.g., SIMATIC IPC BX-21A prior to V31.01.07), update to the specified version or later when available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.