Primary

Context

Siemens SIMATIC IPC DiagBase and DiagMonitor Weak Registry Permission Vulnerability Allowing Privilege Escalation

Vulnerability

A vulnerability exists in all versions of Siemens SIMATIC IPC DiagBase and SIMATIC IPC DiagMonitor due to improper restriction of user permissions for a registry key. This flaw could enable an authenticated attacker to load vulnerable drivers into the system, potentially leading to privilege escalation or bypassing endpoint protection and other security measures.

Impact

Exploitation of this vulnerability could result in unauthorized privilege escalation or the ability to bypass security measures such as endpoint protection.

Remediation

Users can manually modify the registry to remove the user privilege or run a script for the same purpose. For more information, refer to the Siemens support document 109978178. Currently, no fix is planned for this vulnerability.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

1.2

impact

7.5

exploitability

3.3

remediation

6.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

1.2

impact

7.5

exploitability

3.3

remediation

6.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Siemens SIMATIC IPC DiagBase and DiagMonitor Weak Registry Permission Vulnerability Allowing Privilege Escalation

Vulnerability

Impact

Remediation

Affected Products

Siemens SIMATIC IPC DiagBase

Siemens SIMATIC IPC DiagMonitor

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating