Incorrect Authorization Vulnerability in SIMATIC CP 1543-1 Devices
Plan Patch7.5SSA-654798Nov 12, 2024
Attack VectorNetwork
Auth RequiredNone
ComplexityLow
User InteractionNone needed
Summary
SIMATIC CP 1543-1 devices contain an Incorrect Authorization vulnerability (CWE-863) that allows unauthenticated attackers to gain access to the filesystem without proper authorization checks.
What this means
What could happen
An attacker could read sensitive files on the CP 1543-1 communications processor, potentially exposing network credentials, configuration data, or proprietary process information used to control production systems.
Who's at risk
Manufacturing and process automation sites using SIMATIC CP 1543-1 communications processors in their control networks. This includes utilities, chemical plants, and any facility with Siemens S7-1500 PLC deployments that rely on CP 1543-1 for networking functions.
How it could be exploited
An attacker on the network sends requests to the CP 1543-1 without authentication. The device fails to properly verify authorization and grants access to the filesystem, allowing the attacker to enumerate and read files.
Prerequisites
- Network access to the SIMATIC CP 1543-1 device
- No credentials required
remotely exploitableno authentication requiredlow complexityhigh CVSS (7.5)
Exploitability
Low exploit probability (EPSS 0.4%)
Affected products (1)
ProductAffected VersionsFix Status
SIMATIC CP 1543-1 V4.0≥ V4.0.44, < V4.0.504.0.50
Remediation & Mitigation
0/1
Schedule — requires maintenance window
0/1Patching may require device reboot — plan for process interruption
HOTFIXUpdate SIMATIC CP 1543-1 V4.0 devices to version 4.0.50 or later
CVEs (1)
↑↓ Navigate · Esc Close
API:
/api/v1/advisories/e3092dd6-a13b-4fc5-9b86-cfc052695728