Siemens Industrial Communication Devices Race Condition Vulnerability in Web Interface Configuration Loading
Vulnerability
A race condition vulnerability has been identified in the web interface of several Siemens industrial communication devices, including RUGGEDCOM RST2428P and various models in the SCALANCE XC, XCM, XRM, XCH, XRH, and XR families, all running versions prior to V3.2. This vulnerability allows an authenticated remote attacker to manipulate the 'Load Configuration from Local PC' functionality, causing the device to load a configuration controlled by the attacker instead of the legitimate one. Exploitation requires a legitimate administrator to initiate the upload process, creating a window of opportunity for the attacker to interfere and replace the configuration.
Impact
Successful exploitation of this vulnerability could lead to unauthorized configuration changes on the affected device, potentially allowing an attacker to disrupt operations or manipulate the device's functionality to their advantage.
Remediation
Siemens has released version V3.2 for all affected products. Instructions for updating can be found on the Siemens Industry Support website.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.