Data Exfiltration and Code Execution Vulnerability in Siemens IEC 61850 System Configurator and Related Products
CVE-2018-4858

7.8HIGH

Key Information:

Vendor: Siemens
Status: Iec 61850 System Configurator, Digsi 5 (affected As Iec 61850 System Configurator Is Incorporated), Digsi 4, Sicam Pas/pqs, Sicam Pq Analyzer, Sicam Scc
Vendor: CVE Published:; 9 July 2018

Summary

A security flaw has been identified in various Siemens products, including the IEC 61850 system configurator, allowing potential data exfiltration or code execution under certain conditions. The vulnerability arises from a service that listens on multiple network ports, enabling an attacker to send a specially crafted network request. Exploitation requires the attacker to have previously executed code on the host system, as well as a user interaction with the affected client's application. This situation highlights the importance of securing network interfaces, as this vulnerability could compromise system confidentiality and integrity. Siemens provides guidance on mitigations to address this security issue.

Affected Version(s)

IEC 61850 system configurator, DIGSI 5 (affected as IEC 61850 system configurator is incorporated), DIGSI 4, SICAM PAS/PQS, SICAM PQ Analyzer, SICAM SCC IEC 61850 system configurator : All versions < V5.80 < IEC 61850 system configurator : All versions V5.80

IEC 61850 system configurator, DIGSI 5 (affected as IEC 61850 system configurator is incorporated), DIGSI 4, SICAM PAS/PQS, SICAM PQ Analyzer, SICAM SCC DIGSI 5 (affected as IEC 61850 system configurator is incorporated) : All versions < V7.80 < DIGSI 5 (affected as IEC 61850 system configurator is incorporated) : All versions V7.80

IEC 61850 system configurator, DIGSI 5 (affected as IEC 61850 system configurator is incorporated), DIGSI 4, SICAM PAS/PQS, SICAM PQ Analyzer, SICAM SCC DIGSI 4 : All versions < V4.93 < DIGSI 4 : All versions V4.93