Siemens Fixes SINUMERIK Hole

Wednesday, March 1, 2017 @ 03:03 PM gHale


Siemens mitigated a vulnerability in its SINUMERIK Integrate and SINUMERIK Operate that could under certain conditions allow attackers in a privileged network position to capture and modify network traffic protected with TLS, according to a report with Siemens ProductCERT.

The vulnerability could allow an attacker to read and manipulate data in TLS sessions while performing a man-in-the-middle (MITM) attack. Clients only end up affected if it is using HTTPs.

RELATED STORIES
Schneider Clears Old Modicon PLC Hole
Sixnet Switches get Fix
VIPA Controls Patches WinPLC7 Hole
Siemens Updates DROWN Fix

The following products suffer from the issue:
• SINUMERIK Integrate Access MyMachine/Ethernet with AMM Service Engineer Client (ActiveX): All versions
• SINUMERIK Integrate Access MyMachine/Ethernet and Analyze MyCondition with SINUMERIK Integrate Operate Client:
— All versions between 2.0.3.00.016 (including) and 2.0.6 (excluding)
— All versions between 3.0.4.00.032 (including) and 3.0.6 (excluding) Affected SINUMERIK Integrate Operate clients are included in the following

SINUMERIK Operate releases:
— All versions between V4.5 SP6 (including) and V4.5 SP6 Hotfix 8 (excluding)
— All versions between V4.7 SP2 Hotfix 1(including) and V4.7 SP4 (excluding)

SINUMERIK Integrate product suite facilitates simple networking of machine tools in the IT of the production landscape.

SINUMERIK Operate is a standard Human Machine Interface system for SINUMERIK numerical controls.

The vulnerability case number is CVE-2017-2685 and it has a CVSS base score of 7.4.

Siemens has the following updates for affected SINUMERIK Integrate and SINUMERIK Operate versions:
• SINUMERIK Integrate Access MyMachine /Ethernet and Analyze MyCondition with SINUMERIK Operate V4.7:
— Update to SINUMERIK Operate to V4.7 SP4
or
— Update SINUMERIK Integrate Operate Client to V3.0.6

• SINUMERIK Operate V4.5:
— Update to SINUMERIK Operate to V4.5 SP6 Hotfix 8 [1], or
— Update SINUMERIK Integrate Operate Client to V2.0.6

SINUMERIK Integrate Access MyMachine /Ethernet with AMM Service Engineer Client (ActiveX): Replace with AMM Service Client V4.1.0.5 (Replacement will automatically install when connecting to SINUMERIK Integrate V4.1 SP5 or newer)

As a general security measure Siemens recommends to configure the environment according to its operational guidelines in order to run the devices in a protected IT environment.



Leave a Reply

You must be logged in to post a comment.