Siemens SIMATIC PCS neo and User Management Component Stack-Based Buffer Overflow Vulnerability Allowing Arbitrary Code Execution or Denial-of-Service
Vulnerability
A stack-based buffer overflow vulnerability has been identified in Siemens SIMATIC PCS neo versions 4.1 and 5.0, as well as in the User Management Component (UMC) versions prior to 2.15.1.3. This vulnerability allows an unauthenticated remote attacker to execute arbitrary code or cause a denial-of-service condition.
Impact
Exploitation of this vulnerability could lead to arbitrary code execution or the creation of a denial-of-service condition.
Remediation
Users are advised to update the User Management Component (UMC) to version 2.15.1.3 or later. For SIMATIC PCS neo, specific update instructions can be found on the Siemens support portal. In non-networked deployments, block TCP ports 4002 and 4004 on machines with UMC installed. If not using the 'RT Server' type of UMC machine, port 4004 can be blocked everywhere without impacting other UMC machine types.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.