CVE-2020-7580

A vulnerability has been identified in SIMATIC Automation Tool (All versions < V4 SP2), SIMATIC NET PC Software V14 (All versions < V14 SP1 Update 14), SIMATIC NET PC Software V15 (All versions), SIMATIC NET PC Software V16 (All versions < V16 Upd3), SIMATIC PCS neo (All versions < V3.0 SP1), SIMATIC ProSave (All versions < V17), SIMATIC S7-1500 Software Controller (All versions < V21.8), SIMATIC STEP 7 (TIA Portal) V13 (All versions < V13 SP2 Update 4), SIMATIC STEP 7 (TIA Portal) V14 (All versions < V14 SP1 Update 10), SIMATIC STEP 7 (TIA Portal) V15 (All versions < V15.1 Update 5), SIMATIC STEP 7 (TIA Portal) V16 (All versions < V16 Update 2), SIMATIC STEP 7 V5 (All versions < V5.6 SP2 HF3), SIMATIC WinCC OA V3.16 (All versions < V3.16 P018), SIMATIC WinCC OA V3.17 (All versions < V3.17 P003), SIMATIC WinCC Runtime Advanced (All versions < V16 Update 2), SIMATIC WinCC Runtime Professional V13 (All versions < V13 SP2 Update 4), SIMATIC WinCC Runtime Professional V14 (All versions < V14 SP1 Update 10), SIMATIC WinCC Runtime Professional V15 (All versions < V15.1 Update 5), SIMATIC WinCC Runtime Professional V16 (All versions < V16 Update 2), SIMATIC WinCC V7.4 (All versions < V7.4 SP1 Update 14), SIMATIC WinCC V7.5 (All versions < V7.5 SP1 Update 3), SINAMICS STARTER (All Versions < V5.4 HF2), SINAMICS Startdrive (All Versions < V16 Update 3), SINEC NMS (All versions < V1.0 SP2), SINEMA Server (All versions < V14 SP3), SINUMERIK ONE virtual (All Versions < V6.14), SINUMERIK Operate (All Versions < V6.14). A common component used by the affected applications regularly calls a helper binary with SYSTEM privileges while the call path is not quoted. This could allow a local attacker to execute arbitrary code with SYTEM privileges.

CVSS v2.0 7.2

7.2^/10

CVSS v2.0 :

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 10

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

Scope

CVSS v3.0 6.7 MEDIUM

6.7^/10

CVSS v3.0 : MEDIUM

V3 Legend

Vector :

Exploitability : 0.8 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required HIGH

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://cert-portal.siemens.com/productcert/pdf/ssa-312271.pdf	Vendor Advisory
https://us-cert.cisa.gov/ics/advisories/icsa-20-161-04	Third Party Advisory US Government Resource

Configurations

Configuration 1

cpe:2.3:a:siemens:simatic_pcs_7:*:*:*:*:*:*:*:*

cpe:2.3:a:siemens:simatic_wincc:7.4:sp1:*:*:*:*:*:*

cpe:2.3:a:siemens:simatic_wincc_runtime_advanced:*:*:*:*:*:*:*:*

cpe:2.3:a:siemens:sinema_server:*:*:*:*:*:*:*:*

cpe:2.3:a:siemens:simatic_wincc:7.4:-:*:*:*:*:*:*

cpe:2.3:a:siemens:simatic_net_pc:16:update1:*:*:*:*:*:*

cpe:2.3:a:siemens:simatic_net_pc:16:-:*:*:*:*:*:*

cpe:2.3:a:siemens:simatic_net_pc:*:*:*:*:*:*:*:*

cpe:2.3:a:siemens:simatic_prosave:*:*:*:*:*:*:*:*

cpe:2.3:a:siemens:simatic_pcs_neo:*:*:*:*:*:*:*:*

cpe:2.3:a:siemens:simatic_automatic_tool:*:*:*:*:*:*:*:*

cpe:2.3:a:siemens:simatic_step_7:5.6:sp1:*:*:*:*:*:*

cpe:2.3:a:siemens:simatic_step_7:5.6:sp2:*:*:*:*:*:*

cpe:2.3:a:siemens:simatic_step_7:5.6:sp2_hotfix1:*:*:*:*:*:*

cpe:2.3:a:siemens:simatic_step_7:5.6:-:*:*:*:*:*:*

cpe:2.3:a:siemens:simatic_step_7:*:*:*:*:*:*:*:*

cpe:2.3:a:siemens:simatic_wincc_open_architecture:3.17:*:*:*:*:*:*:*

cpe:2.3:a:siemens:simatic_wincc_open_architecture:3.16:*:*:*:*:*:*:*

cpe:2.3:a:siemens:simatic_step_7:*:*:*:*:*:*:*:*

cpe:2.3:a:siemens:sinumerik_operate:*:*:*:*:*:*:*:*

cpe:2.3:a:siemens:sinumerik_one_virtual:*:*:*:*:*:*:*:*

cpe:2.3:a:siemens:sinec_network_management_system:*:*:*:*:*:*:*:*

cpe:2.3:a:siemens:sinamics_startdrive:*:*:*:*:*:*:*:*

cpe:2.3:a:siemens:sinamics_starter_commissioning_tool:*:*:*:*:*:*:*:*

cpe:2.3:a:siemens:simatic_wincc:7.5:sp1:*:*:*:*:*:*

cpe:2.3:a:siemens:simatic_wincc:7.5:sp1_update1:*:*:*:*:*:*

cpe:2.3:a:siemens:simatic_wincc:7.5:sp1_update2:*:*:*:*:*:*

cpe:2.3:a:siemens:simatic_wincc:7.5:-:*:*:*:*:*:*

cpe:2.3:a:siemens:simatic_wincc:7.4:sp1_update1:*:*:*:*:*:*

cpe:2.3:a:siemens:simatic_wincc:7.4:sp1_update2:*:*:*:*:*:*

cpe:2.3:a:siemens:simatic_wincc:7.4:sp1_update3:*:*:*:*:*:*

cpe:2.3:a:siemens:simatic_wincc:7.4:sp1_update4:*:*:*:*:*:*

cpe:2.3:a:siemens:simatic_wincc:7.4:sp1_update5:*:*:*:*:*:*

cpe:2.3:a:siemens:simatic_wincc:7.4:sp1_update6:*:*:*:*:*:*

cpe:2.3:a:siemens:simatic_wincc:7.4:sp1_update7:*:*:*:*:*:*

cpe:2.3:a:siemens:simatic_wincc:7.4:sp1_update8:*:*:*:*:*:*

cpe:2.3:a:siemens:simatic_wincc:7.4:sp1_update9:*:*:*:*:*:*

cpe:2.3:a:siemens:simatic_wincc:7.4:sp1_update10:*:*:*:*:*:*

cpe:2.3:a:siemens:simatic_wincc:7.4:sp1_update11:*:*:*:*:*:*

cpe:2.3:a:siemens:simatic_wincc:7.4:sp1_update12:*:*:*:*:*:*

cpe:2.3:a:siemens:simatic_wincc:7.4:sp1_update13:*:*:*:*:*:*

cpe:2.3:a:siemens:simatic_wincc:*:*:*:*:*:*:*:*

cpe:2.3:a:siemens:simatic_wincc_runtime_professional:*:*:*:*:*:*:*:*

History

24 Jan 2023, 16:19

Type	Values Removed	Values Added
CPE		cpe:2.3:a:predictapp_project:predictapp::::::::
References	~~(MISC) https://github.com/abhilash1985/PredictApp/commit/b067372f3ee26fe1b657121f0f41883ff4461a06 -~~	(MISC) https://github.com/abhilash1985/PredictApp/commit/b067372f3ee26fe1b657121f0f41883ff4461a06 - Patch, Third Party Advisory
References	~~(MISC) https://github.com/abhilash1985/PredictApp/pull/73 -~~	(MISC) https://github.com/abhilash1985/PredictApp/pull/73 - Patch, Third Party Advisory
References	~~(MISC) https://vuldb.com/?id.218387 -~~	(MISC) https://vuldb.com/?id.218387 - Third Party Advisory
References	~~(MISC) https://vuldb.com/?ctiid.218387 -~~	(MISC) https://vuldb.com/?ctiid.218387 - Third Party Advisory
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 9.8
First Time		Predictapp Project predictapp Predictapp Project

16 Jan 2023, 13:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2020-06-10 05:15

Updated : 2022-12-13 05:15

NVD link : CVE-2020-7580

Mitre link : CVE-2020-7580

Products Affected

No products.

CWE

CWE-428