CVE-2020-7581 vulnerability in Siemens Products
Published on July 14, 2020

A vulnerability has been identified in Opcenter Execution Discrete (All versions < V3.2), Opcenter Execution Foundation (All versions < V3.2), Opcenter Execution Process (All versions < V3.2), Opcenter Intelligence (All versions < V3.3), Opcenter Quality (All versions < V11.3), Opcenter RD&L (V8.0), SIMATIC Notifier Server for Windows (All versions), SIMATIC PCS neo (All versions < V3.0 SP1), SIMATIC STEP 7 (TIA Portal) V15 (All versions < V15.1 Update 5), SIMATIC STEP 7 (TIA Portal) V16 (All versions < V16 Update 2), SIMOCODE ES V15.1 (All versions < V15.1 Update 4), SIMOCODE ES V16 (All versions < V16 Update 1), Soft Starter ES V15.1 (All versions < V15.1 Update 3), Soft Starter ES V16 (All versions < V16 Update 1). A component within the affected application calls a helper binary with SYSTEM privileges during startup while the call path is not quoted. This could allow a local attacker with administrative privileges to execute code with SYSTEM level privileges.

NVD

Weakness Type

Unquoted Search Path or Element

The product uses a search path that contains an unquoted element, in which the element contains whitespace or other separators. This can cause the product to access resources in a parent path. If a malicious individual has access to the file system, it is possible to elevate privileges by inserting such a file as "C:\Program.exe" to be run by a privileged program making use of WinExec.

Products Associated with CVE-2020-7581

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2020-7581 are published in these products:

Siemens Opcenter Execution Discrete

Siemens Opcenter Execution Foundation

Siemens Opcenter Execution Process

Siemens Opcenter Intelligence

Siemens Opcenter Quality

Siemens Opcenter Rdl

Siemens Simatic Notifier Server

Siemens Simatic Pcs Neo

Siemens Simatic Step 7

Siemens Simocode Es

Siemens Soft Starter Es

Affected Versions

Siemens Opcenter Execution Discrete:

Version All versions < V3.2 is affected.

Siemens Opcenter Execution Foundation:

Version All versions < V3.2 is affected.

Siemens Opcenter Execution Process:

Version All versions < V3.2 is affected.

Siemens Opcenter Intelligence:

Version All versions < V3.3 is affected.

Siemens Opcenter Quality:

Version All versions < V11.3 is affected.

Siemens Opcenter RD&L:

Version V8.0 is affected.

Siemens SIMATIC Notifier Server for Windows:

Version All versions is affected.

Siemens SIMATIC PCS neo:

Version All versions < V3.0 SP1 is affected.

Siemens SIMATIC STEP 7 (TIA Portal) V15:

Version All versions < V15.1 Update 5 is affected.

Siemens SIMATIC STEP 7 (TIA Portal) V16:

Version All versions < V16 Update 2 is affected.

Siemens SIMOCODE ES V15.1:

Version All versions < V15.1 Update 4 is affected.

Siemens SIMOCODE ES V16:

Version All versions < V16 Update 1 is affected.

Siemens Soft Starter ES V15.1:

Version All versions < V15.1 Update 3 is affected.

Siemens Soft Starter ES V16:

Version All versions < V16 Update 1 is affected.

Exploit Probability

EPSS

0.05%

Percentile

14.85%