#VU77309 Information disclosure in Siemens products - CVE-2023-27465
Vulnerability identifier: #VU77309
Vulnerability risk: Low
CVSSv4.0: 1.7 [CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2023-27465
CWE-ID:
CWE-200
Exploitation vector: Local
Exploit availability: No
Vulnerable software:
SIMOTION C240
Hardware solutions /
Firmware
SIMOTION C240 PN
Hardware solutions /
Firmware
SIMOTION D410-2 DP/PN
Hardware solutions /
Firmware
SIMOTION D425-2 DP
Hardware solutions /
Firmware
SIMOTION D425-2 DP/PN
Hardware solutions /
Firmware
SIMOTION D435-2 DP
Hardware solutions /
Firmware
SIMOTION D435-2 DP/PN
Hardware solutions /
Firmware
SIMOTION D445-2 DP/PN
Hardware solutions /
Firmware
SIMOTION D455-2 DP/PN
Hardware solutions /
Firmware
SIMOTION P320-4 E
Hardware solutions /
Firmware
SIMOTION P320-4 S
Hardware solutions /
Firmware
Vendor: Siemens
Description
The vulnerability allows a local attacker to gain access to potentially sensitive information.
The vulnerability exists due to the affected device does not protect access to certain services relevant for debugging. An attacker with physical access can extract confidential technology object (TO) configuration from the device.
Mitigation
Install updates from vendor's website.
Vulnerable software versions
SIMOTION C240: 5.4
SIMOTION C240 PN: 5.4
SIMOTION D410-2 DP/PN: 5.4
SIMOTION D425-2 DP: 5.4
SIMOTION D425-2 DP/PN: 5.4
SIMOTION D435-2 DP: 5.4
SIMOTION D435-2 DP/PN: 5.4
SIMOTION D445-2 DP/PN: 5.4
SIMOTION D455-2 DP/PN: 5.4
SIMOTION P320-4 E: 5.4
SIMOTION P320-4 S: 5.4
External links
https://cert-portal.siemens.com/productcert/pdf/ssa-482956.pdf
Q & A
Can this vulnerability be exploited remotely?
No. The attacker should have physical access to the system in order to successfully exploit this vulnerability.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
