Denial-of-Service Vulnerability in Automation License Manager

Act Now8.6SSA-103653Sep 10, 2024

Attack VectorNetwork

Auth RequiredNone

ComplexityLow

User InteractionNone needed

Summary

A vulnerability in Automation License Manager is triggered by specially crafted packets to port 4410/tcp, causing an integer overflow (CWE-190) that crashes the license service. This creates a denial-of-service condition preventing legitimate users from accessing licenses and systems dependent on license validation from starting or operating.

What this means

What could happen

An attacker can crash the Automation License Manager, blocking all users from accessing licenses and preventing systems dependent on it from starting or operating. If your PLCs or engineering workstations rely on this license server, production could stop.

Who's at risk

Siemens Automation License Manager is critical infrastructure software for organizations using Siemens automation products and engineering tools. IT managers at utilities, water authorities, and manufacturing facilities should care, especially if your PLCs, SCADA systems, or engineering workstations depend on this license server for operation.

How it could be exploited

An attacker on your network sends specially crafted packets to port 4410/tcp on the License Manager. This triggers an integer overflow condition in the software, causing the license service to crash and become unavailable.

Prerequisites

Network access to port 4410/tcp on the License Manager system
No credentials or authentication required

remotely exploitableno authentication requiredlow complexityhigh EPSS score (13.8%)no patch available (V5)affects availability of control systems

Exploitability

High exploit probability (EPSS 13.8%)

Affected products (3)

2 with fix1 EOL

ProductAffected VersionsFix Status

Automation License Manager V6.0All versions < V6.0 SP12 Upd36.0 SP12 Upd3

Automation License Manager V6.2All versions < V6.2 Upd36.2 Upd3

Automation License Manager V5All versionsNo fix (EOL)

Remediation & Mitigation

0/4

Do now

0/1

Automation License Manager V5

WORKAROUNDFor Automation License Manager V5 (no patch available), implement network firewall rules to restrict access to port 4410/tcp to only authorized engineering systems and block external access

Schedule — requires maintenance window

0/2

Patching may require device reboot — plan for process interruption

Automation License Manager V6.0

HOTFIXUpdate Automation License Manager V6.0 to version SP12 Upd3 or later

Automation License Manager V6.2

HOTFIXUpdate Automation License Manager V6.2 to version Upd3 or later

Mitigations - no patch available

0/1

Automation License Manager V5 has reached End of Life. The vendor will not release a patch. Apply the following compensating controls:

HARDENINGIsolate the License Manager on a separate network segment or VLAN, accessible only by systems that require it

CVEs (1)

CVE-2024-44087

View full Siemens ProductCERT advisory

↑↓ Navigate · Esc Close

API: /api/v1/advisories/40644396-7bdd-4adc-9005-d335363481e4