QID 590822

Date Published: 2022-04-28

QID 590822: Siemens SIMATIC WinCC (Update B) Multiple Vulnerabilities (ICSA-21-315-03)

Siemens reports these vulnerabilities affects the following SIMATIC SCADA HMI system products:
SIMATIC WinCC v15 and earlier: All versions
SIMATIC WinCC v16: All versions prior to v16 Update 5
SIMATIC WinCC v17: All versions prior to v17 Update 2

QID Detection Logic (Authenticated):
QID checks for the Vulnerable version of Siemens using registry "HKLM\SOFTWARE\Siemens"

Successful exploitation of these vulnerabilities could allow local attackers to escalate privileges, and read, write, or delete critical files.

  • CVSS V3 rated as Critical - 9.8 severity.
  • CVSS V2 rated as High - 7.5 severity.
  • Solution

    Customers are advised to refer to CERT MITIGATIONS section ICSA-21-315-03 for affected packages and patching details.

    Vendor References

    CVEs related to QID 590822

    Software Advisories
    Advisory ID Software Component Link
    ICSA-21-315-03 URL Logo www.us-cert.gov/ics/advisories/ICSA-21-315-03