Rewterz

Rewterz Threat Advisory – CVE-2020-8597 – ICS: Siemens SCALANCE, RUGGEDCOM

August 12, 2020
Rewterz

Rewterz Threat Advisory – CVE-2020-1046 – Microsoft Windows code execution

August 12, 2020

Rewterz Threat Advisory – CVE-2020-7583 – ICS: Siemens Automation License Manager

Severity

Medium

Analysis Summary

The application does not properly validate the users’ privileges when executing some operations, which could allow an attacker with low permissions to arbitrarily modify files that should be protected against writing.

Impact

Privilege escalation

Affected Vendors

Siemens

Affected Products

Automation License Manager 5: All versions
Automation License Manager 6: All versions prior to v6.0.8

Remediation

Siemens recommends the following:

Users of License Manager 5: Disable access to drives which have licenses installed, for non-administrator users.
Users of License Manager 6: Update to v6.0.8 or later version.

Reading this advisory was a good start.

Make it a habit.

Rewterz publishes threat advisories ahead of mainstream cybersecurity media, informed by an AI-Native Autonomous SOC that sees regional threat actor activity in real time. Subscribe to receive each new advisory as it publishes, plus a monthly Middle East threat landscape brief drawn from our own SOC telemetry. For teams evaluating their detection coverage, a 30-minute consultation with a senior analyst is also available, at your pace, when you're ready.