Multiple Vulnerabilities in SIMATIC Energy Manager before V7.3 Update 1

Act Now10SSA-655554Apr 12, 2022

Attack VectorNetwork

Auth RequiredNone

ComplexityLow

User InteractionNone needed

Summary

SIMATIC Energy Manager (Basic and PRO versions before V7.3 Update 1) contains multiple vulnerabilities (CWE-732 file permissions, CWE-427 uncontrolled search path, CWE-502 deserialization) that allow local privilege escalation, local code execution, and remote code execution.

What this means

What could happen

An attacker could gain elevated privileges or execute arbitrary code on the Energy Manager server, potentially allowing them to modify energy consumption data, disrupt power monitoring and control functions, or use the system as a foothold to attack connected electrical infrastructure.

Who's at risk

Energy utilities and industrial sites running SIMATIC Energy Manager for power consumption monitoring and control. This includes municipal electric utilities, industrial facilities with onsite power management, and any organization using Siemens energy management software for facility operations.

How it could be exploited

An attacker with local access to the Energy Manager system could exploit weak file permissions or search path vulnerabilities to execute code with elevated privileges. Alternatively, an attacker with network access could send a malicious serialized object to trigger remote code execution if the application deserializes untrusted data.

Prerequisites

- For local exploitation: local user access to the Energy Manager server - For remote exploitation: network access to the Energy Manager application ports - Specific configuration details not mentioned in advisory; may require specific inputs or conditions

remotely exploitableno authentication requiredlow complexityhigh EPSS score (33.3%)affects energy infrastructure

Exploitability

High exploit probability (EPSS 33.3%)

Affected products (2)

2 with fix

ProductAffected VersionsFix Status

SIMATIC Energy Manager Basic< V7.3 Update 17.3 Update 1

SIMATIC Energy Manager PRO< V7.3 Update 17.3 Update 1

Remediation & Mitigation

0/2

Schedule — requires maintenance window

0/2

Patching may require device reboot — plan for process interruption

SIMATIC Energy Manager Basic

HOTFIXUpdate SIMATIC Energy Manager Basic to V7.3 Update 1 or later

SIMATIC Energy Manager PRO

HOTFIXUpdate SIMATIC Energy Manager PRO to V7.3 Update 1 or later

CVEs (3)

CVE-2022-23448 CVE-2022-23449 CVE-2022-23450

View full Siemens ProductCERT advisory

↑↓ Navigate · Esc Close

API: /api/v1/advisories/4cbe89aa-eb5c-4b72-8149-20f95ddd7564