OTPulse
FeedAboutContact

Siemens Simcenter STAR-CCM+

Monitor5.3ICS-CERT ICSA-22-223-01Aug 9, 2022
Attack VectorNetwork
Auth RequiredNone
ComplexityLow
User InteractionNone needed
Summary

Simcenter STAR-CCM+ contains an information disclosure vulnerability when using the Power-on-Demand public license server. An attacker with network access could retrieve a system's hostname, username, and display name. This information can be used for network reconnaissance and to identify targets for subsequent attacks. Siemens is preparing updates but has not yet released patches for all affected versions.

What this means
What could happen
An attacker with network access to the Power-on-Demand license server could retrieve sensitive system information including hostnames, usernames, and display names. This information disclosure could be used to map the network and identify systems for further attacks.
Who's at risk
Organizations in the energy sector using Siemens Simcenter STAR-CCM+ with Power-on-Demand public licensing should be concerned. This affects engineering and computational analysis systems that rely on cloud-based licensing verification. Affected users include simulation engineers, process modeling teams, and IT staff managing engineering tool licenses.
How it could be exploited
An attacker sends requests to the Power-on-Demand public license server over the network. The server responds with system metadata (hostname, username, display name) without proper access controls. The attacker collects this information to identify targets for subsequent attacks against the network.
Prerequisites
  • Network access to the Simcenter STAR-CCM+ Power-on-Demand public license server
  • Power-on-Demand public license server enabled and accessible
  • No authentication required
remotely exploitableno authentication requiredlow complexityinformation disclosure may enable network reconnaissance
Exploitability
Low exploit probability (EPSS 0.3%)
Affected products (1)
ProductAffected VersionsFix Status
Simcenter STAR-CCM+All versions only if the Power-on-Demand public license server is usedNo fix yet
Remediation & Mitigation
0/3
Do now
0/1
HARDENINGRestrict network access to the Power-on-Demand public license server using firewall rules, network segmentation, or access control lists. Only allow connections from authorized engineering workstations and systems that require licensing.
Long-term hardening
0/2
HARDENINGMonitor and log all connections to the Power-on-Demand license server to detect unauthorized access attempts.
HARDENINGReview Siemens' operational guidelines for Industrial Security and implement network protection mechanisms according to their recommendations.
View full CISA ICS-CERT advisory
โ†‘โ†“ Navigate ยท Esc Close
API: /api/v1/advisories/76124cd1-f2d9-4c9e-9ecd-273bea30c441
Siemens Simcenter STAR-CCM+ | CVSS 5.3 - OTPulse