Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2023-32736

CVSS 7.3 · High EPSS 0.06% · P19
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2023-32736

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
A vulnerability has been identified in SIMATIC S7-PLCSIM V16 (All versions), SIMATIC S7-PLCSIM V17 (All versions), SIMATIC STEP 7 Safety V16 (All versions), SIMATIC STEP 7 Safety V17 (All versions < V17 Update 8), SIMATIC STEP 7 Safety V18 (All versions < V18 Update 5), SIMATIC STEP 7 V16 (All versions), SIMATIC STEP 7 V17 (All versions < V17 Update 8), SIMATIC STEP 7 V18 (All versions < V18 Update 5), SIMATIC WinCC Unified V16 (All versions), SIMATIC WinCC Unified V17 (All versions < V17 Update 8), SIMATIC WinCC Unified V18 (All versions < V18 SP5), SIMATIC WinCC V16 (All versions), SIMATIC WinCC V17 (All versions < V17 Update 8), SIMATIC WinCC V18 (All versions < V18 SP5), SIMOCODE ES V16 (All versions), SIMOCODE ES V17 (All versions < V17 Update 8), SIMOCODE ES V18 (All versions), SIMOTION SCOUT TIA V5.4 SP1 (All versions), SIMOTION SCOUT TIA V5.4 SP3 (All versions), SIMOTION SCOUT TIA V5.5 SP1 (All versions), SINAMICS Startdrive V16 (All versions), SINAMICS Startdrive V17 (All versions), SINAMICS Startdrive V18 (All versions), SIRIUS Safety ES V17 (TIA Portal) (All versions < V17 Update 8), SIRIUS Safety ES V18 (TIA Portal) (All versions), SIRIUS Soft Starter ES V17 (TIA Portal) (All versions < V17 Update 8), SIRIUS Soft Starter ES V18 (TIA Portal) (All versions), TIA Portal Cloud V16 (All versions), TIA Portal Cloud V17 (All versions < V4.6.0.1), TIA Portal Cloud V18 (All versions < V4.6.1.0). Affected products do not properly sanitize user-controllable input when parsing user settings. This could allow an attacker to cause a type confusion and execute arbitrary code within the affected application.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
Source: NVD (National Vulnerability Database)
Vulnerability Type
可信数据的反序列化
Source: NVD (National Vulnerability Database)
Vulnerability Title
Siemens多款产品 代码问题漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Siemens SIMATIC是德国西门子(Siemens)公司的一款组态软件。 Siemens多款产品存在代码问题漏洞,该漏洞源于受影响的产品在解析用户设置时未正确清理用户可控制的输入。这可能使攻击者造成类型混淆并在受影响的应用程序中执行任意代码。以下产品及版本受到影响:Siemens SIMATIC S7-PLCSIM V16,SIMATIC S7-PLCSIM V17,SIMATIC STEP 7 Safety V16,SIMATIC STEP 7 Safety V17,SIMATIC STEP 7
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
SiemensSIMATIC S7-PLCSIM V16 0 ~ * -
SiemensSIMATIC S7-PLCSIM V17 0 ~ * -
SiemensSIMATIC STEP 7 Safety V16 0 ~ * -
SiemensSIMATIC STEP 7 Safety V17 0 ~ V17 Update 8 -
SiemensSIMATIC STEP 7 Safety V18 0 ~ V18 Update 5 -
SiemensSIMATIC STEP 7 V16 0 ~ * -
SiemensSIMATIC STEP 7 V17 0 ~ V17 Update 8 -
SiemensSIMATIC STEP 7 V18 0 ~ V18 Update 5 -
SiemensSIMATIC WinCC Unified V16 0 ~ * -
SiemensSIMATIC WinCC Unified V17 0 ~ V17 Update 8 -
SiemensSIMATIC WinCC Unified V18 0 ~ V18 SP5 -
SiemensSIMATIC WinCC V16 0 ~ * -
SiemensSIMATIC WinCC V17 0 ~ V17 Update 8 -
SiemensSIMATIC WinCC V18 0 ~ V18 SP5 -
SiemensSIMOCODE ES V16 0 ~ * -
SiemensSIMOCODE ES V17 0 ~ V17 Update 8 -
SiemensSIMOCODE ES V18 0 ~ * -
SiemensSIMOTION SCOUT TIA V5.4 SP1 0 ~ * -
SiemensSIMOTION SCOUT TIA V5.4 SP3 0 ~ * -
SiemensSIMOTION SCOUT TIA V5.5 SP1 0 ~ * -
SiemensSINAMICS Startdrive V16 0 ~ * -
SiemensSINAMICS Startdrive V17 0 ~ * -
SiemensSINAMICS Startdrive V18 0 ~ * -
SiemensSIRIUS Safety ES V17 (TIA Portal) 0 ~ V17 Update 8 -
SiemensSIRIUS Safety ES V18 (TIA Portal) 0 ~ * -
SiemensSIRIUS Soft Starter ES V17 (TIA Portal) 0 ~ V17 Update 8 -
SiemensSIRIUS Soft Starter ES V18 (TIA Portal) 0 ~ * -
SiemensTIA Portal Cloud V16 0 ~ * -
SiemensTIA Portal Cloud V17 0 ~ V4.6.0.1 -
SiemensTIA Portal Cloud V18 0 ~ V4.6.1.0 -

II. Public POCs for CVE-2023-32736

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2023-32736

登录查看更多情报信息。

Same Patch Batch · Siemens · 2024-11-12 · 23 CVEs total

CVE-2024-4410210.0 CRITICALSiemens PP TeleControl Server 代码问题漏洞
CVE-2024-468889.9 CRITICALSiemens SINEC INS 路径遍历漏洞
CVE-2024-468909.1 CRITICALSiemens SINEC INS 操作系统命令注入漏洞
CVE-2024-478088.4 HIGHSiemens SINEC NMS 安全漏洞
CVE-2024-291197.8 HIGHSiemens Spectrum Power 安全漏洞
CVE-2024-477837.8 HIGHSiemens SIPORT MP 安全漏洞
CVE-2024-479407.8 HIGHSiemens Solid Edge 缓冲区错误漏洞
CVE-2024-479417.8 HIGHSiemens Solid Edge 缓冲区错误漏洞
CVE-2024-503107.5 HIGHSiemens SIMATIC CP 1543-1 安全漏洞
CVE-2024-479427.3 HIGHSiemens Solid Edge 代码问题漏洞
CVE-2024-505577.2 HIGHSiemens多款产品 安全漏洞
CVE-2024-505727.2 HIGHSiemens多款产品 注入漏洞
CVE-2024-361406.8 MEDIUMSiemens OZW672和OZW772 跨站脚本漏洞
CVE-2024-468946.3 MEDIUMSiemens SINEC INS 安全漏洞
CVE-2024-503135.3 MEDIUMSiemens Mendix Runtime 竞争条件问题漏洞
CVE-2024-468915.3 MEDIUMSiemens SINEC INS 资源管理错误漏洞
CVE-2024-468895.3 MEDIUMSiemens SINEC INS 安全漏洞
CVE-2024-468924.9 MEDIUMSiemens SINEC INS 代码问题漏洞
CVE-2024-505584.3 MEDIUMSiemens多款产品 访问控制错误漏洞
CVE-2024-505594.3 MEDIUMSiemens多款产品 路径遍历漏洞

Showing top 20 of 23 CVEs. View all on vendor page &rarr; →

IV. Related Vulnerabilities

Same product: SIMATIC S7-PLCSIM V16
Same vendor: Siemens
Same weakness: CWE-502

V. Comments for CVE-2023-32736

No comments yet

Leave a comment