CVE-2020-7580
First published: Wed Jun 10 2020(Updated: )
A vulnerability has been identified in SIMATIC Automation Tool (All versions < V4 SP2), SIMATIC NET PC Software V14 (All versions < V14 SP1 Update 14), SIMATIC NET PC Software V15 (All versions), SIMATIC NET PC Software V16 (All versions < V16 Upd3), SIMATIC PCS neo (All versions < V3.0 SP1), SIMATIC ProSave (All versions < V17), SIMATIC S7-1500 Software Controller (All versions < V21.8), SIMATIC STEP 7 (TIA Portal) V13 (All versions < V13 SP2 Update 4), SIMATIC STEP 7 (TIA Portal) V14 (All versions < V14 SP1 Update 10), SIMATIC STEP 7 (TIA Portal) V15 (All versions < V15.1 Update 5), SIMATIC STEP 7 (TIA Portal) V16 (All versions < V16 Update 2), SIMATIC STEP 7 V5 (All versions < V5.6 SP2 HF3), SIMATIC WinCC OA V3.16 (All versions < V3.16 P018), SIMATIC WinCC OA V3.17 (All versions < V3.17 P003), SIMATIC WinCC Runtime Advanced (All versions < V16 Update 2), SIMATIC WinCC Runtime Professional V13 (All versions < V13 SP2 Update 4), SIMATIC WinCC Runtime Professional V14 (All versions < V14 SP1 Update 10), SIMATIC WinCC Runtime Professional V15 (All versions < V15.1 Update 5), SIMATIC WinCC Runtime Professional V16 (All versions < V16 Update 2), SIMATIC WinCC V7.4 (All versions < V7.4 SP1 Update 14), SIMATIC WinCC V7.5 (All versions < V7.5 SP1 Update 3), SINAMICS STARTER (All Versions < V5.4 HF2), SINAMICS Startdrive (All Versions < V16 Update 3), SINEC NMS (All versions < V1.0 SP2), SINEMA Server (All versions < V14 SP3), SINUMERIK ONE virtual (All Versions < V6.14), SINUMERIK Operate (All Versions < V6.14). A common component used by the affected applications regularly calls a helper binary with SYSTEM privileges while the call path is not quoted. This could allow a local attacker to execute arbitrary code with SYTEM privileges.
Credit: productcert@siemens.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Siemens Simatic Automatic Tool | ||
| Siemens Simatic Net Pc | <16 | |
| Siemens Simatic Net Pc | =16 | |
| Siemens Simatic Net Pc | =16-update1 | |
| SIEMENS SIMATIC PCS 7 | ||
| Siemens Simatic Pcs Neo | ||
| Siemens SIMATIC ProSave | ||
| Siemens Simatic S7-1500 Software Controller | <21.8 | |
| Siemens SIMATIC STEP 7 | <5.6 | |
| Siemens SIMATIC STEP 7 | >=13<=16 | |
| Siemens SIMATIC STEP 7 | =5.6 | |
| Siemens SIMATIC STEP 7 | =5.6-sp1 | |
| Siemens SIMATIC STEP 7 | =5.6-sp2 | |
| Siemens SIMATIC STEP 7 | =5.6-sp2_hotfix1 | |
| Siemens Simatic WinCC | <7.4 | |
| Siemens Simatic WinCC | =7.4 | |
| Siemens Simatic WinCC | =7.4-sp1 | |
| Siemens Simatic WinCC | =7.4-sp1_update1 | |
| Siemens Simatic WinCC | =7.4-sp1_update10 | |
| Siemens Simatic WinCC | =7.4-sp1_update11 | |
| Siemens Simatic WinCC | =7.4-sp1_update12 | |
| Siemens Simatic WinCC | =7.4-sp1_update13 | |
| Siemens Simatic WinCC | =7.4-sp1_update2 | |
| Siemens Simatic WinCC | =7.4-sp1_update3 | |
| Siemens Simatic WinCC | =7.4-sp1_update4 | |
| Siemens Simatic WinCC | =7.4-sp1_update5 | |
| Siemens Simatic WinCC | =7.4-sp1_update6 | |
| Siemens Simatic WinCC | =7.4-sp1_update7 | |
| Siemens Simatic WinCC | =7.4-sp1_update8 | |
| Siemens Simatic WinCC | =7.4-sp1_update9 | |
| Siemens Simatic WinCC | =7.5 | |
| Siemens Simatic WinCC | =7.5-sp1 | |
| Siemens Simatic WinCC | =7.5-sp1_update1 | |
| Siemens Simatic WinCC | =7.5-sp1_update2 | |
| Siemens Simatic Wincc Open Architecture | =3.16 | |
| Siemens Simatic Wincc Open Architecture | =3.17 | |
| Siemens Simatic Wincc Runtime Advanced | ||
| Siemens Simatic Wincc Runtime Professional | >=13<=16 | |
| Siemens Sinamics Startdrive | ||
| Siemens Sinamics Starter Commissioning Tool | ||
| Siemens Sinec Network Management System | ||
| Siemens SINEMA Server | ||
| Siemens Sinumerik One Virtual | ||
| Siemens Sinumerik Operate |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID of this vulnerability?
The vulnerability ID is CVE-2020-7580.
What is the severity rating of CVE-2020-7580?
The severity rating of CVE-2020-7580 is 6.7 (high).
Which software versions are affected by CVE-2020-7580?
SIMATIC Automation Tool (All versions < V4 SP2), SIMATIC NET PC Software V14 (All versions < V14 SP1 Update 14), SIMATIC NET PC Software V15 (All versions), SIMATIC NET PC Software V16 (All versions < V16 Upd3), SIMATIC PCS neo (All versions < V3.0 SP1), SIMATIC PCS 7, SIMATIC ProSave, SIMATIC S7-1500 Software Controller, SIMATIC STEP 7 (All versions < V5.6), SIMATIC WinCC (All versions < V7.5), SIMATIC WinCC Open Architecture (All versions < V3.17), SIMATIC WinCC Runtime Advanced, SIMATIC WinCC Runtime Professional, SINAMICS Startdrive, SINAMICS Starter Commissioning Tool, SINET Network Management System, SINEMA Server, SINUMERIK One Virtual, and SINUMERIK Operate.
How can I fix CVE-2020-7580?
The vendor has released security updates to address this vulnerability. It is recommended to apply the latest patches or updates provided by Siemens.
Where can I find more information about CVE-2020-7580?
More information about CVE-2020-7580 can be found in the Siemens ProductCERT advisory and the US-CERT advisory.
- collector/nvd-index
- agent/references
- agent/severity
- agent/weakness
- agent/author
- agent/tags
- agent/description
- agent/type
- agent/event
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- vendor/siemens
- canonical/siemens simatic automatic tool
- canonical/siemens simatic net pc
- version/siemens simatic net pc/16
- version/siemens simatic net pc/16-update1
- canonical/siemens simatic pcs 7
- canonical/siemens simatic pcs neo
- canonical/siemens simatic prosave
- canonical/siemens simatic s7-1500 software controller
- canonical/siemens simatic step 7
- version/siemens simatic step 7/13
- version/siemens simatic step 7/16
- version/siemens simatic step 7/5.6
- version/siemens simatic step 7/5.6-sp1
- version/siemens simatic step 7/5.6-sp2
- version/siemens simatic step 7/5.6-sp2_hotfix1
- canonical/siemens simatic wincc
- version/siemens simatic wincc/7.4
- version/siemens simatic wincc/7.4-sp1
- version/siemens simatic wincc/7.4-sp1_update1
- version/siemens simatic wincc/7.4-sp1_update10
- version/siemens simatic wincc/7.4-sp1_update11
- version/siemens simatic wincc/7.4-sp1_update12
- version/siemens simatic wincc/7.4-sp1_update13
- version/siemens simatic wincc/7.4-sp1_update2
- version/siemens simatic wincc/7.4-sp1_update3
- version/siemens simatic wincc/7.4-sp1_update4
- version/siemens simatic wincc/7.4-sp1_update5
- version/siemens simatic wincc/7.4-sp1_update6
- version/siemens simatic wincc/7.4-sp1_update7
- version/siemens simatic wincc/7.4-sp1_update8
- version/siemens simatic wincc/7.4-sp1_update9
- version/siemens simatic wincc/7.5
- version/siemens simatic wincc/7.5-sp1
- version/siemens simatic wincc/7.5-sp1_update1
- version/siemens simatic wincc/7.5-sp1_update2
- canonical/siemens simatic wincc open architecture
- version/siemens simatic wincc open architecture/3.16
- version/siemens simatic wincc open architecture/3.17
- canonical/siemens simatic wincc runtime advanced
- canonical/siemens simatic wincc runtime professional
- version/siemens simatic wincc runtime professional/13
- version/siemens simatic wincc runtime professional/16
- canonical/siemens sinamics startdrive
- canonical/siemens sinamics starter commissioning tool
- canonical/siemens sinec network management system
- canonical/siemens sinema server
- canonical/siemens sinumerik one virtual
- canonical/siemens sinumerik operate