Vulnerability in SIMATIC Drive Controllers and Related Products by Siemens
CVE-2022-38465

9.3CRITICAL

Key Information:

Vendor
Siemens
Status
Simatic Drive Controller Family
Simatic Et 200sp Open Controller Cpu 1515sp Pc (incl. Siplus Variants)
Simatic Et 200sp Open Controller Cpu 1515sp Pc2 (incl. Siplus Variants)
Simatic S7-1200 Cpu Family (incl. Siplus Variants)
Vendor
CVE Published:
11 October 2022

Summary

A cryptographic vulnerability affects several product families within the Siemens SIMATIC range, most notably the SIMATIC Drive Controllers and various CPUs. The issue stems from inadequate protection of the built-in global private key, which is intended to secure sensitive configuration data and facilitate communications. This flaw permits potential offline attacks by enabling malicious actors to deduce the private key by exploiting a single compromised unit. Once obtained, the private key could lead to unauthorized access to confidential configuration data and disrupt legacy communications with PG/PC and HMI systems.

Affected Version(s)

SIMATIC Drive Controller family All versions < V2.9.2

SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants) All versions

SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) All versions < V21.9

References

https://cert-portal.siemens.com/productcert/pdf/ssa-56842...
https://cert-portal.siemens.com/productcert/pdf/ssa-56842...

CVSS V3.1

Score:
9.3
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.