Go to listing page

Fifteen Flaws Discovered In Siemens’ Industrial Network Management System

Fifteen Flaws Discovered In Siemens’ Industrial Network Management System
Siemens SINEC network management system (NMS) has reported multiple vulnerabilities that pose a number of risks such as DoS attacks, RCE, and credential leaks in defined circumstances.

What was discovered?

Experts at Claroty spotted fifteen security flaws, tracked from CVE-2021-33722 to CVE-2021-33736, in SINEC NMS.
  • These flaws could allow the user to escalate their permissions, gain administrative rights to the system and leak sensitive information.
  • An attacker could use some of these flaws for RCE attack on affected systems.
  • In other scenarios, an authenticated remote attacker can execute arbitrary code on the system, with system privileges, under certain conditions.

The notable flaws

Out of all the vulnerabilities, the major one is CVE-2021-33723 which can be abused to gain administrative access. 
  • When combined with CVE-2021-33722, this can then be exploited to execute arbitrary code abruptly.
  • CVE-2021-33727 authenticates an attacker to download the user profile and steal confidential data.
  • The shortcomings in question — tracked from CVE-2021-33722 through CVE-2021-33736 — were addressed by Siemens in version V1.0 SP2 Update.

Final comments

As all versions of Siemen’s SINEC prior to V1.0 SP2 Update 1 are affected, the firm advises users to update to V1.0 SP2 Update 1 or later. It has also issued an advisory with patch information for new versions of SINEC NMS that address these flaws.
Cyware Publisher

Publisher

Cyware