all InfoSec news
SSA-968170 V1.0: Remote Code Execution Vulnerability in SIMATIC STEP 7 V5.x and Derived Products
Siemens ProductCERT Security Advisories cert-portal.siemens.com
SIMATIC STEP 7 and PCS 7 contain a database management system that could allow remote users with low privileges to use embedded functions of the database (local or in a network share) that have impact on the server.
An attacker with network access to the server network could leverage these embedded functions to run code with elevated privileges in the database management system’s server (where STEP 7 or PCS 7 are running).
Siemens has released an update for SIMATIC STEP …
access a network attacker code code execution database database management database management system embedded functions impact local low management management system network network access pcs privileges products remote code remote code execution server share simatic ssa system vulnerability