I’M UNDER A CYBER ATTACK

Alert

Alert 2024-33 Critical Vulnerability in Siemens Industrial Systems

Siemens has released a statement regarding the vulnerability CVE-2024-35783, a critical flaw with a CVSS score of 9.4. This vulnerability affects key industrial systems such as SIMATIC PCS 7, SIMATIC Process Historian, and SIMATIC WinCC, and allows an authenticated attacker to execute arbitrary commands, potentially compromising the integrity of critical industrial control systems.

The vulnerability arises from improper privilege handling in the database server. In specific configurations, the server may run with elevated privileges, enabling an attacker to gain administrative control over the affected systems, potentially compromising critical data and alarms in industrial environments.

For more details and updates, visit the following link: Siemens Security Advisory.

Download PDF

WE’RE HERE TO HELP

Are you under a cyber attack?

Report it here

get the latest alerts in your inbox

Subscribe to our newsletter

We are a a group of highly trained professionals based in R&D with advanced technical knowledge and experience in the detection, analysis, containment, and recovery of security incidents.

We are a CSIRT, we are Cybolt.

I’M UNDER A CYBER ATTACK

Explore

Services

Stay updated

© 2024. Beacon Lab CSIRT, Privacy Policy

This site is registered on wpml.org as a development site. Switch to a production site key to remove this banner.