Rewterz

Rewterz Threat Advisory – ICS: Siemens Desigo Insight

October 14, 2020
Rewterz

Rewterz Threat Alert – The EKING Variant of Phobos Ransomware

October 14, 2020

Rewterz Threat Advisory – CVE-2020-7591 – ICS: Siemens SIPORT MP Multiple Vulnerabilities

Severity

Medium

Analysis Summary

CVE-2020-7591

The affected product has an authentication bypass, which could make it vulnerable to an attacker impersonating a system user. Successful exploitation of this vulnerability could allow an authenticated attacker to impersonate other users of the system and perform (potentially administrative) actions on behalf of those users if the single sign-on feature (“Allow logon without password”) is enabled.

Impact

Use of client-side authentication

Affected Vendors

Siemens

Affected Products

SIPORT MP: Versions 3.2.1 and prior

Remediation

Siemens has released an updated version (v3.2.1).

Reading this advisory was a good start.

Make it a habit.

Rewterz publishes threat advisories ahead of mainstream cybersecurity media, informed by an AI-Native Autonomous SOC that sees regional threat actor activity in real time. Subscribe to receive each new advisory as it publishes, plus a monthly Middle East threat landscape brief drawn from our own SOC telemetry. For teams evaluating their detection coverage, a 30-minute consultation with a senior analyst is also available, at your pace, when you're ready.