OTPulse
FeedAboutContact

Siemens SIMARIS Configuration (Update A)

Monitor4.4ICS-CERT ICSA-21-040-08Feb 9, 2021
Attack VectorLocal
Auth RequiredLow
ComplexityLow
User InteractionNone needed
Summary

SIMARIS configuration versions prior to 4.0.1 contain a local privilege escalation vulnerability (CWE-276) that could allow a user with local access to gain elevated privileges or establish persistence on the system.

What this means
What could happen
An attacker with local access to an engineering workstation could escalate privileges to gain control over SIMARIS configuration data, potentially allowing unauthorized changes to electrical system designs or settings that feed into operational controls.
Who's at risk
Electrical utilities and power generation facilities using Siemens SIMARIS configuration for switchgear design and electrical system configuration are affected. This impacts engineering teams and maintenance personnel who use SIMARIS workstations to design or modify electrical distribution systems that feed into operational equipment.
How it could be exploited
An attacker must first gain local access to a workstation running SIMARIS configuration. Once logged in with standard user privileges, they can exploit the vulnerability to escalate to administrator level, granting access to all configuration data and system settings without detection.
Prerequisites
  • Local access to workstation running SIMARIS configuration
  • Valid user account credentials (non-administrator)
  • SIMARIS configuration version prior to 4.0.1
Local access requiredLow EPSS score (actively exploited)Privilege escalation capabilityAffects engineering workstations
Exploitability
Low exploit probability (EPSS 0.0%)
Affected products (1)
ProductAffected VersionsFix Status
SIMARIS configuration: All< 4.0.14.0.1 or later
Remediation & Mitigation
0/4
Do now
0/1
HARDENINGRestrict physical and network access to SIMARIS configuration workstations to authorized personnel only
Schedule — requires maintenance window
0/1

Patching may require device reboot — plan for process interruption

HOTFIXUpdate SIMARIS configuration to version 4.0.1 or later
Long-term hardening
0/2
HARDENINGImplement strong access controls and multi-factor authentication for engineering workstations
HARDENINGFollow Siemens operational guidelines for Industrial Security and apply recommendations from SIMARIS product manuals
View full CISA ICS-CERT advisory
↑↓ Navigate · Esc Close
API: /api/v1/advisories/569f325e-118e-443f-973f-89d079ddf277