Multiple Vulnerabilities in SIDIS Prime Before V4.0.700

Plan Patch8.7SSA-277137Apr 8, 2025

Attack VectorNetwork

Auth RequiredNone

ComplexityHigh

User InteractionNone needed

Summary

SIDIS Prime before V4.0.700 contains multiple vulnerabilities in embedded components including OpenSSL, SQLite, Boost C++ Libraries, and Microsoft components. These include issues related to credential handling, memory corruption, input validation, and information disclosure.

What this means

What could happen

An attacker with network access could exploit these vulnerabilities to gain unauthorized access to SIDIS Prime, potentially allowing modification of configuration or extraction of sensitive data from the system. Depending on how SIDIS Prime is integrated into your plant network, this could affect data integrity and system availability.

Who's at risk

Water authorities and municipal utilities using SIDIS Prime for operational data management, process monitoring, or control system integration. This affects system administrators responsible for SCADA data management and engineering workstations that interface with process control systems.

How it could be exploited

An attacker on your network could send specially crafted requests to SIDIS Prime to exploit input validation flaws (CWE-20, CWE-400) or memory corruption issues (CWE-122, CWE-787, CWE-416). The attack does not require authentication or user interaction. Successful exploitation could allow the attacker to execute code, read sensitive data, or cause the application to crash.

Prerequisites

Network access to SIDIS Prime service ports
SIDIS Prime version before 4.0.700 deployed

remotely exploitableno authentication requiredhigh CVSS score (8.7)affects multiple critical components (OpenSSL, SQLite)memory corruption vulnerabilities

Exploitability

Moderate exploit probability (EPSS 5.2%)

Affected products (1)

ProductAffected VersionsFix Status

SIDIS Prime< V4.0.7004.0.700

Remediation & Mitigation

0/1

Schedule — requires maintenance window

0/1

Patching may require device reboot — plan for process interruption

HOTFIXUpdate SIDIS Prime to version 4.0.700 or later

CVEs (14)

CVE-2022-21658 CVE-2023-2975 CVE-2023-3446 CVE-2023-4807 CVE-2023-5363 CVE-2023-5678 CVE-2023-7104 CVE-2024-0056 CVE-2024-0232 CVE-2024-0727 CVE-2024-5535 CVE-2024-9143 CVE-2024-21319 CVE-2024-30105

View full Siemens ProductCERT advisory

↑↓ Navigate · Esc Close

API: /api/v1/advisories/72678e20-8268-4b39-b412-29fbf855c2a7