OTPulse
FeedAboutContact

Siemens TIA Administrator

Low Risk3.3ICS-CERT ICSA-24-165-03Jun 11, 2024
Attack VectorLocal
Auth RequiredLow
ComplexityLow
User InteractionNone needed
Summary

TIA Administrator creates temporary download files in a directory with insecure Windows file permissions (CWE-379). An authenticated local attacker could exploit these weak permissions to disrupt the software update process by interfering with temporary files during downloads. This affects TIA Administrator versions before V3 SP2. Siemens has released a fix in V3 SP2 and recommends updating to this version or later.

What this means
What could happen
An authenticated attacker with local Windows access could disrupt the TIA Administrator update process by exploiting insecure file permissions on temporary download files, potentially preventing critical engineering software updates.
Who's at risk
Engineering staff and IT administrators managing Siemens TIA (Totally Integrated Automation) deployments should be aware of this issue. TIA Administrator is used to manage software licenses and updates for Siemens automation engineering workstations. This affects anyone running TIA Administrator versions before V3 SP2 on Windows systems.
How it could be exploited
An attacker with valid Windows user credentials on a machine running TIA Administrator could manipulate temporary download files stored with weak permissions during the update process, interfering with successful installation of patches and updates.
Prerequisites
  • Valid Windows user account on the local machine running TIA Administrator
  • Local file system access to TIA Administrator temporary download directory
  • TIA Administrator version prior to V3 SP2
Low CVSS score (3.3)Requires local Windows access and valid credentialsNo remote exploitation possibleNot actively exploitedAffects administrative/engineering environment
Exploitability
Low exploit probability (EPSS 0.1%)
Affected products (1)
ProductAffected VersionsFix Status
TIA Administrator<V3 SP23 SP2
Remediation & Mitigation
0/2
Do now
0/1
HARDENINGRestrict Windows file system access to TIA Administrator installation and temporary directories using appropriate NTFS permissions, ensuring only authorized users can read/write to temporary files
Schedule — requires maintenance window
0/1

Patching may require device reboot — plan for process interruption

HOTFIXUpdate TIA Administrator to V3 SP2 or later
View full CISA ICS-CERT advisory
↑↓ Navigate · Esc Close
API: /api/v1/advisories/6e429c3e-b8a3-4264-b16d-b1e9738ca0e0
Siemens TIA Administrator | CVSS 3.3 - OTPulse