high
8.8
CWE
428
Advisory Published
Updated

CVE-2020-7580

First published: Wed Jun 10 2020(Updated: )

A vulnerability has been identified in SIMATIC Automation Tool (All versions < V4 SP2), SIMATIC NET PC Software V14 (All versions < V14 SP1 Update 14), SIMATIC NET PC Software V15 (All versions), SIMATIC NET PC Software V16 (All versions < V16 Upd3), SIMATIC PCS neo (All versions < V3.0 SP1), SIMATIC ProSave (All versions < V17), SIMATIC S7-1500 Software Controller (All versions < V21.8), SIMATIC STEP 7 (TIA Portal) V13 (All versions < V13 SP2 Update 4), SIMATIC STEP 7 (TIA Portal) V14 (All versions < V14 SP1 Update 10), SIMATIC STEP 7 (TIA Portal) V15 (All versions < V15.1 Update 5), SIMATIC STEP 7 (TIA Portal) V16 (All versions < V16 Update 2), SIMATIC STEP 7 V5 (All versions < V5.6 SP2 HF3), SIMATIC WinCC OA V3.16 (All versions < V3.16 P018), SIMATIC WinCC OA V3.17 (All versions < V3.17 P003), SIMATIC WinCC Runtime Advanced (All versions < V16 Update 2), SIMATIC WinCC Runtime Professional V13 (All versions < V13 SP2 Update 4), SIMATIC WinCC Runtime Professional V14 (All versions < V14 SP1 Update 10), SIMATIC WinCC Runtime Professional V15 (All versions < V15.1 Update 5), SIMATIC WinCC Runtime Professional V16 (All versions < V16 Update 2), SIMATIC WinCC V7.4 (All versions < V7.4 SP1 Update 14), SIMATIC WinCC V7.5 (All versions < V7.5 SP1 Update 3), SINAMICS STARTER (All Versions < V5.4 HF2), SINAMICS Startdrive (All Versions < V16 Update 3), SINEC NMS (All versions < V1.0 SP2), SINEMA Server (All versions < V14 SP3), SINUMERIK ONE virtual (All Versions < V6.14), SINUMERIK Operate (All Versions < V6.14). A common component used by the affected applications regularly calls a helper binary with SYSTEM privileges while the call path is not quoted. This could allow a local attacker to execute arbitrary code with SYTEM privileges.

Credit: productcert@siemens.com

Affected SoftwareAffected VersionHow to fix
Siemens Simatic Automatic Tool
Siemens Simatic Net Pc<16
Siemens Simatic Net Pc=16
Siemens Simatic Net Pc=16-update1
SIEMENS SIMATIC PCS 7
Siemens Simatic Pcs Neo
Siemens SIMATIC ProSave
Siemens SIMATIC S7-1500 Software Controller<21.8
Siemens SIMATIC STEP 7<5.6
Siemens SIMATIC STEP 7>=13<=16
Siemens SIMATIC STEP 7=5.6
Siemens SIMATIC STEP 7=5.6-sp1
Siemens SIMATIC STEP 7=5.6-sp2
Siemens SIMATIC STEP 7=5.6-sp2_hotfix1
Siemens Simatic WinCC<7.4
Siemens Simatic WinCC=7.4
Siemens Simatic WinCC=7.4-sp1
Siemens Simatic WinCC=7.4-sp1_update1
Siemens Simatic WinCC=7.4-sp1_update10
Siemens Simatic WinCC=7.4-sp1_update11
Siemens Simatic WinCC=7.4-sp1_update12
Siemens Simatic WinCC=7.4-sp1_update13
Siemens Simatic WinCC=7.4-sp1_update2
Siemens Simatic WinCC=7.4-sp1_update3
Siemens Simatic WinCC=7.4-sp1_update4
Siemens Simatic WinCC=7.4-sp1_update5
Siemens Simatic WinCC=7.4-sp1_update6
Siemens Simatic WinCC=7.4-sp1_update7
Siemens Simatic WinCC=7.4-sp1_update8
Siemens Simatic WinCC=7.4-sp1_update9
Siemens Simatic WinCC=7.5
Siemens Simatic WinCC=7.5-sp1
Siemens Simatic WinCC=7.5-sp1_update1
Siemens Simatic WinCC=7.5-sp1_update2
Siemens Simatic Wincc Open Architecture=3.16
Siemens Simatic Wincc Open Architecture=3.17
Siemens SIMATIC WinCC Runtime Advanced
Siemens Simatic Wincc Runtime Professional>=13<=16
Siemens SINAMICS Startdrive
Siemens Sinamics Starter Commissioning Tool
Siemens Sinec Network Management System
Siemens SINEMA Server
Siemens Sinumerik One Virtual
Siemens Sinumerik Operate
Siemens SIMATIC Automation Tool
Siemens SIMATIC NET PC software: All versions after v16 and prior to v16 Upd3
Siemens SIMATIC PCS neo SP1<3.0
3.0
Siemens SIMATIC ProSave
Siemens SIMATIC S7-1500 Software Controller<21.8
21.8
Siemens SINAMICS STARTER HF2<5.4
5.4
Siemens SIMATIC STEP 7 SP2 HF3<5.6
5.6
Siemens SIMATIC STEP 7 (TIA Portal) v13: All versions prior to SP2 Update 4
Siemens SIMATIC STEP 7 (TIA Portal) v14 SP1 Update 10<14
14
Siemens SIMATIC WinCC Runtime Professional v14 SP1 Update 10<14
14
Siemens SIMATIC STEP 7 (TIA Portal) v15: All versions prior to v15.1 Update 5
Siemens SIMATIC STEP 7 (TIA Portal) v16 Update 2<16
16
Siemens SIMATIC WinCC OA v3.16: All versions prior to P018
Siemens SIMATIC WinCC OA v3.17: All versions prior to P003
Siemens SIMATIC WinCC Runtime Advanced Update 2<16
16
Siemens SIMATIC WinCC Runtime Professional v13 SP2 Update 4<13
13
Siemens SIMATIC WinCC Runtime Professional v14
Siemens SIMATIC WinCC Runtime Professional v15 Update 5<15.1
15.1
Siemens SIMATIC WinCC Runtime Professional v16 Update 2<16
16
Siemens SIMATIC WinCC v7.4 SP1 Update 14<7.4
7.4
Siemens SIMATIC WinCC v7.5 SP1 Update 3<7.5
7.5
Siemens SINAMICS Startdrive
Siemens SINEMA Server SP3<14
14
Siemens SIMATIC ProSave<17
17

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Parent vulnerabilities

(Appears in the following advisories)

Frequently Asked Questions

  • What is the vulnerability ID of this vulnerability?

    The vulnerability ID is CVE-2020-7580.

  • What is the severity rating of CVE-2020-7580?

    The severity rating of CVE-2020-7580 is 6.7 (high).

  • Which software versions are affected by CVE-2020-7580?

    SIMATIC Automation Tool (All versions < V4 SP2), SIMATIC NET PC Software V14 (All versions < V14 SP1 Update 14), SIMATIC NET PC Software V15 (All versions), SIMATIC NET PC Software V16 (All versions < V16 Upd3), SIMATIC PCS neo (All versions < V3.0 SP1), SIMATIC PCS 7, SIMATIC ProSave, SIMATIC S7-1500 Software Controller, SIMATIC STEP 7 (All versions < V5.6), SIMATIC WinCC (All versions < V7.5), SIMATIC WinCC Open Architecture (All versions < V3.17), SIMATIC WinCC Runtime Advanced, SIMATIC WinCC Runtime Professional, SINAMICS Startdrive, SINAMICS Starter Commissioning Tool, SINET Network Management System, SINEMA Server, SINUMERIK One Virtual, and SINUMERIK Operate.

  • How can I fix CVE-2020-7580?

    The vendor has released security updates to address this vulnerability. It is recommended to apply the latest patches or updates provided by Siemens.

  • Where can I find more information about CVE-2020-7580?

    More information about CVE-2020-7580 can be found in the Siemens ProductCERT advisory and the US-CERT advisory.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203