siemens sinumerik_analyse_mycondition_firmware 证书验证不恰当

CVE编号

CVE-2021-31892

利用情况

暂无

补丁情况

N/A

披露时间

2021-07-13

漏洞描述

A vulnerability has been identified in SINUMERIK Analyse MyCondition (All versions), SINUMERIK Analyze MyPerformance (All versions), SINUMERIK Analyze MyPerformance /OEE-Monitor (All versions), SINUMERIK Analyze MyPerformance /OEE-Tuning (All versions), SINUMERIK Integrate Client 02 (All versions >= V02.00.12 < 02.00.18), SINUMERIK Integrate Client 03 (All versions >= V03.00.12 < 03.00.18), SINUMERIK Integrate Client 04 (V04.00.02 and all versions >= V04.00.15 < 04.00.18), SINUMERIK Integrate for Production 4.1 (All versions < V4.1 SP10 HF3), SINUMERIK Integrate for Production 5.1 (V5.1), SINUMERIK Manage MyMachines (All versions), SINUMERIK Manage MyMachines /Remote (All versions), SINUMERIK Manage MyMachines /Spindel Monitor (All versions), SINUMERIK Manage MyPrograms (All versions), SINUMERIK Manage MyResources /Programs (All versions), SINUMERIK Manage MyResources /Tools (All versions), SINUMERIK Manage MyTools (All versions), SINUMERIK Operate V4.8 (All versions < V4.8 SP8), SINUMERIK Operate V4.93 (All versions < V4.93 HF7), SINUMERIK Operate V4.94 (All versions < V4.94 HF5), SINUMERIK Optimize MyProgramming /NX-Cam Editor (All versions). Due to an error in a third-party dependency the ssl flags used for setting up a TLS connection to a server are overwitten with wrong settings. This results in a missing validation of the server certificate and thus in a possible TLS MITM szenario.

解决建议

建议您更新当前系统或软件至最新版，完成漏洞的修复。

参考链接
https://cert-portal.siemens.com/productcert/pdf/ssa-729965.pdf
https://us-cert.cisa.gov/ics/advisories/icsa-21-194-04

受影响软件情况

#	类型	厂商	产品	版本	影响面
1
	运行在以下环境
	系统	siemens	sinumerik_analyse_mycondition_firmware	-	-
	运行在以下环境
	系统	siemens	sinumerik_analyze_myperformance_firmware	-	-
	运行在以下环境
	系统	siemens	sinumerik_integrate_client_firmware	*	From (including) 2.00.12	Up to (excluding) 2.00.18
	运行在以下环境
	系统	siemens	sinumerik_integrate_client_firmware	*	From (including) 3.00.12	Up to (excluding) 3.00.18
	运行在以下环境
	系统	siemens	sinumerik_integrate_client_firmware	*	From (including) 4.00.15	Up to (excluding) 4.00.18
	运行在以下环境
	系统	siemens	sinumerik_integrate_for_production_firmware	*		Up to (including) 4.1
	运行在以下环境
	系统	siemens	sinumerik_integrate_for_production_firmware	5.1	-
	运行在以下环境
	系统	siemens	sinumerik_manage_mymachines_firmware	-	-
	运行在以下环境
	系统	siemens	sinumerik_manage_myprograms_firmware	-	-
	运行在以下环境
	系统	siemens	sinumerik_manage_myresources_firmware	-	-
	运行在以下环境
	系统	siemens	sinumerik_manage_mytools_firmware	-	-
	运行在以下环境
	系统	siemens	sinumerik_operate_firmware	*		Up to (excluding) 4.8
	运行在以下环境
	系统	siemens	sinumerik_operate_firmware	4.8	-
	运行在以下环境
	系统	siemens	sinumerik_operate_firmware	4.93	-
	运行在以下环境
	系统	siemens	sinumerik_operate_firmware	4.94	-
	运行在以下环境
	系统	siemens	sinumerik_optimize_myprogramming_firmware	-	-
	运行在以下环境
	硬件	siemens	sinumerik_analyse_mycondition	-	-
	运行在以下环境
	硬件	siemens	sinumerik_analyze_myperformance	-	-
	运行在以下环境
	硬件	siemens	sinumerik_integrate_client	-	-
	运行在以下环境
	硬件	siemens	sinumerik_integrate_for_production	-	-
	运行在以下环境
	硬件	siemens	sinumerik_manage_mymachines	-	-
	运行在以下环境
	硬件	siemens	sinumerik_manage_myprograms	-	-
	运行在以下环境
	硬件	siemens	sinumerik_manage_myresources	-	-
	运行在以下环境
	硬件	siemens	sinumerik_manage_mytools	-	-
	运行在以下环境
	硬件	siemens	sinumerik_operate	-	-
	运行在以下环境
	硬件	siemens	sinumerik_optimize_myprogramming	-	-

CVSS3评分 7.4

• 攻击路径 网络
• 攻击复杂度 高
• 权限要求 无
• 影响范围 未更改
• 用户交互 无
• 可用性 无
• 保密性 高
• 完整性 高

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

CWE-ID	漏洞类型
CWE-295	证书验证不恰当

Exp相关链接

- avd.aliyun.com