CVE-2021-42029
First published: Tue Apr 12 2022(Updated: )
A vulnerability has been identified in SIMATIC STEP 7 (TIA Portal) V15 (All versions), SIMATIC STEP 7 (TIA Portal) V16 (All versions < V16 Update 5), SIMATIC STEP 7 (TIA Portal) V17 (All versions < V17 Update 2). An attacker could achieve privilege escalation on the web server of certain devices due to improper access control vulnerability in the engineering system software. The attacker needs to have direct access to the impacted web server.
Credit: productcert@siemens.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| SIMATIC STEP 7 | >=15<16 | |
| SIMATIC STEP 7 | =16 | |
| SIMATIC STEP 7 | =16-update1 | |
| SIMATIC STEP 7 | =16-update2 | |
| SIMATIC STEP 7 | =16-update3 | |
| SIMATIC STEP 7 | =16-update4 | |
| SIMATIC STEP 7 | =17 | |
| SIMATIC STEP 7 | =17-update1 | |
| Siemens SIMATIC S7-1200 CPU | ||
| Siemens Simatic S7-1200 CPU 1211C Firmware | ||
| Siemens SIMATIC S7-1200 CPU 1212C Firmware | ||
| Siemens S7-1200 CPU 1212FC | ||
| Siemens SIMATIC S7-1200 CPU 1214FC DC/DC/Rly | ||
| Siemens SIMATIC S7-1200 CPU | ||
| Siemens SIMATIC S7-1200 CPU 1214FC Firmware | ||
| Siemens SIMATIC S7-1200 CPU 1215FC DC/DC/DC | ||
| Siemens CPU 1215C | ||
| Siemens SIMATIC S7-1200 CPU 1215FC DC/DC/DC | ||
| Siemens S7-1200 CPU 1217C | ||
| Siemens S7-1500 | ||
| Siemens Simatic S7-1500 | ||
| Siemens Simatic S7-1500 CPU 1507S F Firmware | ||
| Siemens Simatic S7-1500 | ||
| Siemens S7-1500 CPU | ||
| Siemens SIMATIC S7-1500 CPU 1510SP F-1 | ||
| Siemens SIMATIC S7-1500 CPU 1510SP Firmware | ||
| Siemens SIMATIC S7-1500 CPU 1511-1 PN | ||
| Siemens SIMATIC S7-1500 CPU 1511-1 | ||
| Siemens SIMATIC S7-1500 CPU 1511C-1 PN | ||
| Siemens SIMATIC S7-1500 CPU 1511C-1 PN | ||
| Siemens SIMATIC S7-1511F-1 PN CPU | ||
| Siemens SIMATIC S7-1511F-1 PN CPU | ||
| Siemens SIMATIC S7-1500 CPU 1511T-1 PN | ||
| Siemens SIMATIC S7-1500 CPU 1511TF-1 PN | ||
| Siemens Simatic S7-1500 | ||
| Siemens SIMATIC S7-1500 CPU 1512C-1 PN | ||
| Siemens SIMATIC S7-1500 CPU 1512SP-1 PN | ||
| Siemens SIMATIC S7-1500 CPU 1512SPF-1 Firmware | ||
| Siemens SIMATIC S7-1513-1 PN CPU | ||
| siemens SIMATIC S7-1500 CPU 1513-1 PN firmware | ||
| Siemens SIMATIC S7-1500 CPU 1513f-1 PN | ||
| Siemens SIMATIC S7-1513F-1 PN CPU | ||
| Siemens SIMATIC S7-1500 CPU 1513R-1 Firmware | ||
| Siemens SIMATIC S7-1515-2 PN CPU | ||
| Siemens SIMATIC S7-1500 CPU 1515-2 | ||
| Siemens S7-1500 CPU | ||
| Siemens SIMATIC S7-1515F-2 PN CPU | ||
| Siemens SIMATIC S7-1500 CPU 1515R-2 PN | ||
| Siemens Simatic S7-1500 CPU 1515T-2 PN | ||
| Siemens SIMATIC S7-1500 CPU 1515TF-2 PN | ||
| Siemens SIMATIC S7-1500 | ||
| Siemens SIMATIC S7-1500 CPU 1516-3 DP Firmware | ||
| Siemens SIMATIC S7-1500 CPU 1516-3 | ||
| Siemens SIMATIC S7-1500 CPU 1516-3 PN/DP | ||
| Siemens SIMATIC S7-1516F-3 PN/DP CPU | ||
| Siemens SIMATIC S7-1500 CPU 1516f-3 PN/DP | ||
| Siemens SIMATIC S7-1500 CPU 1516pro-2 PN | ||
| Siemens SIMATIC S7-1500 CPU 1516PRO F-2 PN | ||
| Siemens Simatic S7-1500 | ||
| Siemens Simatic S7-1500 | ||
| Siemens SIMATIC S7-1517-3 PN/DP CPU | ||
| Siemens SIMATIC S7-1517-3 PN/DP CPU | ||
| Siemens SIMATIC S7-1517-3 PN/DP CPU | ||
| Siemens SIMATIC S7-1500 CPU 1517-3 PN/DP | ||
| Siemens SIMATIC S7-1500 CPU 1517F-3 Firmware | ||
| Siemens SIMATIC S7-1500 CPU 1517f-3 PN/DP | ||
| Siemens SIMATIC S7-1500 CPU 1517TF-3 Firmware | ||
| Siemens S7-1500 | ||
| Siemens SIMATIC S7-1500 | ||
| Siemens Simatic S7-1500 | ||
| Siemens SIMATIC CPU 1518-4 | ||
| Siemens Simatic S7-1500 CPU 1518-4 PN/DP MFP | ||
| Siemens Simatic S7-1500 CPU 1518-4 PN/DP MFP | ||
| Siemens SIMATIC S7-1518F-4 PN/DP CPU | ||
| Siemens SIMATIC S7-1500 CPU 1518F-4 PN/DP | ||
| Siemens Simatic S7-1500 | ||
| Siemens Simatic S7-1500 | ||
| Siemens Simatic S7-1500 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2021-42029?
CVE-2021-42029 has been assigned a medium severity rating due to its potential for privilege escalation.
How do I fix CVE-2021-42029?
To remediate CVE-2021-42029, update your SIMATIC STEP 7 (TIA Portal) to version 16 Update 5 or later, or to version 17 Update 2 or later.
Which versions are affected by CVE-2021-42029?
CVE-2021-42029 affects SIMATIC STEP 7 (TIA Portal) versions 15, and versions 16 before Update 5, as well as versions 17 before Update 2.
What are the potential impacts of CVE-2021-42029?
CVE-2021-42029 could allow an attacker to gain unauthorized access and perform actions at a higher privilege level on the web server of affected devices.
Are there any workarounds for CVE-2021-42029?
Temporary mitigation for CVE-2021-42029 involves limiting access to the web server and implementing network segmentation controls.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/weakness
- agent/references
- agent/last-modified-date
- agent/remedy
- agent/first-publish-date
- agent/event
- agent/author
- agent/description
- agent/source
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/softwarecombine
- agent/tags
- vendor/siemens
- canonical/simatic step 7
- version/simatic step 7/15
- version/simatic step 7/16
- version/simatic step 7/16-update1
- version/simatic step 7/16-update2
- version/simatic step 7/16-update3
- version/simatic step 7/16-update4
- version/simatic step 7/17
- version/simatic step 7/17-update1
- canonical/siemens simatic s7-1200 cpu
- canonical/siemens simatic s7-1200 cpu 1211c firmware
- canonical/siemens simatic s7-1200 cpu 1212c firmware
- canonical/siemens s7-1200 cpu 1212fc
- canonical/siemens simatic s7-1200 cpu 1214fc dc/dc/rly
- canonical/siemens simatic s7-1200 cpu 1214fc firmware
- canonical/siemens simatic s7-1200 cpu 1215fc dc/dc/dc
- canonical/siemens cpu 1215c
- canonical/siemens s7-1200 cpu 1217c
- canonical/siemens s7-1500
- canonical/siemens simatic s7-1500
- canonical/siemens simatic s7-1500 cpu 1507s f firmware
- canonical/siemens s7-1500 cpu
- canonical/siemens simatic s7-1500 cpu 1510sp f-1
- canonical/siemens simatic s7-1500 cpu 1510sp firmware
- canonical/siemens simatic s7-1500 cpu 1511-1 pn
- canonical/siemens simatic s7-1500 cpu 1511-1
- canonical/siemens simatic s7-1500 cpu 1511c-1 pn
- canonical/siemens simatic s7-1511f-1 pn cpu
- canonical/siemens simatic s7-1500 cpu 1511t-1 pn
- canonical/siemens simatic s7-1500 cpu 1511tf-1 pn
- canonical/siemens simatic s7-1500 cpu 1512c-1 pn
- canonical/siemens simatic s7-1500 cpu 1512sp-1 pn
- canonical/siemens simatic s7-1500 cpu 1512spf-1 firmware
- canonical/siemens simatic s7-1513-1 pn cpu
- canonical/siemens simatic s7-1500 cpu 1513-1 pn firmware
- canonical/siemens simatic s7-1500 cpu 1513f-1 pn
- canonical/siemens simatic s7-1513f-1 pn cpu
- canonical/siemens simatic s7-1500 cpu 1513r-1 firmware
- canonical/siemens simatic s7-1515-2 pn cpu
- canonical/siemens simatic s7-1500 cpu 1515-2
- canonical/siemens simatic s7-1515f-2 pn cpu
- canonical/siemens simatic s7-1500 cpu 1515r-2 pn
- canonical/siemens simatic s7-1500 cpu 1515t-2 pn
- canonical/siemens simatic s7-1500 cpu 1515tf-2 pn
- canonical/siemens simatic s7-1500 cpu 1516-3 dp firmware
- canonical/siemens simatic s7-1500 cpu 1516-3
- canonical/siemens simatic s7-1500 cpu 1516-3 pn/dp
- canonical/siemens simatic s7-1516f-3 pn/dp cpu
- canonical/siemens simatic s7-1500 cpu 1516f-3 pn/dp
- canonical/siemens simatic s7-1500 cpu 1516pro-2 pn
- canonical/siemens simatic s7-1500 cpu 1516pro f-2 pn
- canonical/siemens simatic s7-1517-3 pn/dp cpu
- canonical/siemens simatic s7-1500 cpu 1517-3 pn/dp
- canonical/siemens simatic s7-1500 cpu 1517f-3 firmware
- canonical/siemens simatic s7-1500 cpu 1517f-3 pn/dp
- canonical/siemens simatic s7-1500 cpu 1517tf-3 firmware
- canonical/siemens simatic cpu 1518-4
- canonical/siemens simatic s7-1500 cpu 1518-4 pn/dp mfp
- canonical/siemens simatic s7-1518f-4 pn/dp cpu
- canonical/siemens simatic s7-1500 cpu 1518f-4 pn/dp