CVE-2022-34820 — Command Injection in Siemens Simatic CP 1242-7 V2 Firmware

CWE-77 — Command Injection CWE-116 — Improper Encoding or Escaping of Output3 documents3 sources

Severity

9.8CRITICALNVD

CNA8.4

EPSS

0.6%

top 31.10%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Siemens Simatic CP 1242-7 V2 Firmware Siemens Simatic CP 1243-1 Firmware Siemens Simatic CP 1243-7 LTE EU Firmware +27 more

Timeline

PublishedJul 12

Latest updateJul 13

Description

A vulnerability has been identified in SIMATIC CP 1242-7 V2 (All versions = V2.0 = V2.0 = V2.0 = V2.0 = V2.0 < V2.2.28), SIPLUS NET CP 1242-7 V2 (All versions < V3.3.46), SIPLUS NET CP 1543-1 (All versions < V3.0.22), SIPLUS S7-1200 CP 1243-1 (All versions < V3.3.46), SIPLUS S7-1200 CP 1243-1 RAIL (All versions < V3.3.46). The application does not correctly escape some user provided fields during the authentication process. This could allow an attacker to inject custom commands and execute arbit…

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages30 packages

▶NVDsiemens/siplus_s7-1200_cp_1243-1_rail_firmware< 3.3.46

▶CVEListV5siemens/siplus_s7-1200_cp_1243-1_railAll versions < V3.3.46

▶NVDsiemens/siplus_s7-1200_cp_1243-1_firmware< 3.3.46

▶CVEListV5siemens/siplus_s7-1200_cp_1243-1All versions < V3.3.46

▶NVDsiemens/siplus_net_cp_1242-7_v2_firmware< 3.3.46

Patches

Patch: cert-portal.siemens.com ↗Patch: cert-portal.siemens.com ↗

🔴Vulnerability Details

GHSA

GHSA-6j7x-87cm-p532: A vulnerability has been identified in SIMATIC CP 1242-7 V2 (All versions), SIMATIC CP 1243-1 (All versions), SIMATIC CP 1243-7 LTE EU (All versions),↗2022-07-13

▶

CVEList

CVE-2022-34820: A vulnerability has been identified in SIMATIC CP 1242-7 V2 (All versions = V2↗2022-07-12

▶