• Services
    • Asses
      • Compromise Assessment
      • APT Assessment
      • Penetration Testing
      • Secure Architecture Design & Review
      • Red Team Assessment
      • Purple Team Assessment
      • Social Engineering
      • Source Code Review
    • Transform
      • SOC Consultancy
      •     SOC Maturity Assessment
      •     SOC Model Evaluation
      •     SOC Gap Analysis
      •     SIEM Gap Analysis
      •     SIEM Optimization
      •     SOC Content Pack
    • Train
      • Security Awareness and Training
      • Tabletop Exercise
      • Simulated Cyber Attack Exercises
    • Respond
      • Incident Response
      • Incident Analysis
  • Managed Security
    • Managed Security Monitoring
      • Remote SOC
      • Onsite SOC
      • Hybrid SOC
    • Managed Security Services
      • Managed Detection and Response
      • Managed Endpoint Detection and Response
      • Managed Threat Intelligence
      • Managed Threat Hunting
      • Managed Risk-Based SOAR
      • Managed Penetration Testing
  • Solutions
  • Resources
    • Blog
    • Threat Advisory
  • Company
    • About Us
    • Careers
    • Contact
Rewterz Threat Advisory – Mozilla Releases Security Updates for Multiple Products
February 12, 2020
Rewterz Threat Advisory – Adobe Releases Security Updates Fixing over 40 Vulnerabilities in Different Products
February 12, 2020

Rewterz Threat Advisory – ICS: CVE-2019-10923 – Siemens Industrial Real-Time (IRT) Devices Improper Input Validation Vulnerability

February 12, 2020

Severity

High

Analysis Summary

Updates have been released for a vulnerability in Siemens Industrial Real-time Devices. The vulnerability is exploitable remotely with a low skill level required to exploit it. It’s an improper input validation vulnerability. An attacker sending a specially crafted packet could break the real-time synchronization of the affected installation, which may cause a denial-of-service condition.
CVE-2019-10923 has been assigned to this vulnerability.

Impact

Denial-of-service

Affected Vendors

Siemens

Affected Products

  • CP1604/CP1616: All versions prior to 2.8
  • Development/Evaluation Kits for PROFINET IO
  • DK Standard Ethernet Controller: All versions prior to 4.1.1 Patch 05
  • EK-ERTEC 200: All versions prior to 4.5.0 Patch 01
  • EK-ERTEC 200P: All versions prior to 4.5.0
  • SCALANCE X-200IRT: All versions prior to 5.2.1
  • SIMATIC ET 200M: All versions
  • SIMATIC ET 200S: All versions
  • SIMATIC ET 200ecoPN (except 6ES7148-6JD00-0AB0 and 6ES7146-6FF00-0AB0): All versions
  • SIMATIC ET 200pro: All versions
  • SIMATIC PN/PN Coupler 6ES7158-3AD01-0XA0: All versions
  • SIMATIC S7-300 CPU family (incl. F): All versions
  • SIMATIC S7-400 (incl. F) v6 and below: All versions
  • SIMATIC S7-400 PN/DP v7 (incl. F): All versions
  • SIMATIC WinAC RTX (F) 2010: All versions prior to SP3
  • SIMOTION: All versions
  • SINAMICS DCM: All versions prior to 1.5 HF1
  • SINAMICS DCP: All versions prior to 1.3
  • SINAMICS G110M v4.7 (Control Unit): All versions prior to 4.7 SP10 HF5
  • SINAMICS G120 v4.7 (Control Unit): All versions prior to 4.7 SP10 HF5
  • SINAMICS G130 v4.7 (Control Unit): All versions prior to 4.7 HF29
  • SINAMICS G150 (Control Unit): All versions prior to 4.8
  • SINAMICS GH150 v4.7 (Control Unit): All versions
  • SINAMICS GL150 v4.7 (Control Unit): All versions
  • SINAMICS GM150 v4.7 (Control Unit): All versions
  • SINAMICS S110 (Control Unit): All versions
  • SINAMICS S120 v4.7 (Control Unit and CBE20): All versions prior to 4.7 HF34
  • SINAMICS S150 (Control Unit): All versions prior to 4.8
  • SCALANCE X-200IRT switch family (incl. SIPLUS NET variants): All versions prior to 5.2.1
  • SIMATIC ET 200M (incl. SIPLUS variants): All versions
  • SIMATIC ET 200S (incl. SIPLUS variants): All versions
  • SIMATIC ET 200pro (incl. SIPLUS variants): All versions
  • SIMATIC S7-300 CPU family (incl. related ET200 CPUs and SIPLUS variants): All versions
  • SIMATIC S7-400 (incl. F) v6 and below CPU family (incl. SIPLUS variants): All versions
  • SIMATIC S7-400 PN/DP v7 CPU family (incl. SIPLUS variants): All versions
  • SIMOTION (incl. SIPLUS variants): All versions
  • SINAMICS G120 v4.7 Control Unit (incl. SIPLUS variants): All versions prior to 4.7 SP10 HF5
  • SINAMICS S120 v4.7 Control Unit and CBE20 (incl. SIPLUS variants): All versions prior to 4.7 HF34
  • SINAMICS SL150 v4.7 (Control Unit): All versions prior to 4.7 HF33
  • SINAMICS SL150 v4.7 (Control Unit): All versions
  • SINAMICS SM120 v4.7 (Control Unit): All versions
  • SINUMERIK 828D: All versions prior to 4.8 SP5
  • SINUMERIK 840D sl: All versions

Remediation

Following updates are available.

  • CP1604/CP1616: Update to v2.8
  • Development/Evaluation Kits for PROFINET IO:
  • DK Standard Ethernet Controller: Update to v4.1.1 Patch 05
  • EK-ERTEC 200: Update to v4.5.0 Patch 01
  • EK-ERTEC 200: Update to v4.5.0 Patch 01
  • EK-ERTEC 200P: Update to v4.5.0
  • SCALANCE X-200IRT: Update to v5.4.2
  • SIMATIC WinAC RTX (F) 2010: Update to SP3, apply BIOS and Microsoft Windows updates
  • SINAMICS DCM: Update to v1.5 HF1
  • SINAMICS G110M v4.7 (Control Unit): Update to v4.7 SP10 HF5
  • SINAMICS G120 v4.7 (Control Unit): Update to v4.7 SP10 HF5
  • SINAMICS G130 v4.7 (Control Unit): Update to v4.7 HF29 or upgrade to v5.2 HF2
  • SINAMICS S120 v4.7 (Control Unit and CBE20): Update to v4.7 HF34 or upgrade to v5.2 HF2
  • SINAMICS DCP: Upgrade to v1.3

The following updates can be obtained from a Siemens representative or via Siemens customer service.

  • SINAMICS GH150 v4.7 (Control Unit): Upgrade to v4.8 SP2 HF9
  • SINAMICS GL150 v4.7 (Control Unit): Upgrade to v4.8 SP2 HF9
  • SINAMICS GM150 v4.7 (Control Unit): Upgrade to v4.8 SP2 HF9
  • SINUMERIK 828D: Update to v4.8 SP5
  • SINAMICS SL150 v4.7 (Control Unit): Update to v4.7 HF33

Additionally,

  • Restrict network access to Port 161/TCP of the affected product.
  • Disable SNMP in Versions 1 and 2c, if supported by the product.
  • Enable SNMP v3 if required and supported by the product to restrict the vulnerability to authenticated users.
  • Enable access protection and change default credentials for SNMP service, if possible.
  • Services
    • Asses
      • Compromise Assessment
      • APT Assessment
      • Penetration Testing
      • Secure Architecture Design & Review
      • Red Team Assessment
      • Purple Team Assessment
      • Social Engineering
      • Source Code Review
    • Respond
      • Incident Response
      • Incident Analysis
  • Transform
    • SOC Consultancy
    •     SOC Maturity Assessment
    •     SOC Model Evaluation
    •     SOC Gap Analysis
    •     SIEM Gap Analysis
    •     SIEM Optimization
    •     SOC Content Pack
  • Train
    • Security Awareness and Training
    • Tabletop Exercise
    • Simulated Cyber Attack Exercises
  • Managed Security
    • Managed Security Monitoring
      • Remote SOC
      • Onsite SOC
      • Hybrid SOC
    • Managed Security Services
      • Managed Detection and Response
      • Managed Endpoint Detection and Response
      • Managed Threat Intelligence
      • Managed Threat Hunting
      • Managed Risk-Based SOAR
      • Managed Penetration Testing
  • Solutions
  • Resources
    • Blog
    • Threat Advisory
  • Company
    • About Us
    • Careers
    • Contact
COPYRIGHT © REWTERZ. ALL RIGHTS RESERVED.