Siemens SIPROTEC 5 Cleartext Storage Vulnerability Allowing Filesystem Access
Vulnerability
A vulnerability exists in various SIPROTEC 5 devices, including models 6MD84, 6MD85, 6MD86, 6MD89, 6MU85, 7KE85, 7SA82, 7SA86, 7SA87, 7SD82, 7SD86, 7SJ81, 7SJ82, 7SJ85, 7SK82, 7SL82, 7SL86, 7SS85, 7ST85, 7ST86, 7SX82, 7SX85, 7SY82, 7UM85, 7UT82, 7UT85, 7UT86, 7UT87, 7VE85, 7VK87, 7VU85, and Compact 7SX800, all versions. These devices fail to encrypt certain data in the on-board flash storage, potentially allowing an attacker with physical access to read the entire filesystem and access sensitive information.
Impact
Exploitation of this vulnerability could lead to unauthorized access to sensitive information stored on the device's filesystem.
Remediation
Siemens is preparing fixed versions for some products and recommends limiting physical access to affected devices, provisioning certificates signed by the customer PKI, and following general security recommendations. For products where no fix is available, specific countermeasures are suggested.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.