Siemens TIA Portal (Update F)

Risk Summary

Successful exploitation of this vulnerability could allow a local attacker to execute arbitrary code with SYSTEM privileges.

CVEs (1)

Remediations

• TIA Portal v15: Update to v15.1 Update 7 or later
• TIA Portal v17: Update to v17 Update 4 or later
• TIA Portal v16: Update to v16 Update 6 or later
• Siemens has identified the following specific workarounds and mitigations users can apply to reduce the risk: Remove write permissions for every non-administrative user on files and folders located below the “TraceEngine” folder (usually located at “C:\ProgramData\Siemens\Automation”).
• Siemens has identified the following specific workarounds and mitigations users can apply to reduce the risk: A partially working fix for Native Language Windows Versions in English or Multilingual User Interface (MUI) Windows Installation was included in TIA Portal Versions v14 SP1 Update 10, v15 SP1 Update 4, v16 Update 1, and v17.
• Siemens has identified the following specific workarounds and mitigations users can apply to reduce the risk: For more information on this vulnerability and more detailed mitigation instructions, please see Siemens security advisory SSA-629512
• As a general security measure, Siemens strongly recommends users protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends users configure the environment according to Siemens ' operational guidelines for Industrial Security, and follow the recommendations in the product manuals.
• Additional information on industrial security by Siemens can be found on the Siemens industrial security webpage.

Affected Vendors

Affected Products (4)

Affected Sectors

Chemical, Critical Manufacturing, Energy, Food and Agriculture, Water and Wastewater Systems