CVE-2021-40360 : What You Need to Know

A vulnerability in Siemens products could allow an attacker to obtain password hashes and potentially login to the server.

Understanding CVE-2021-40360

This CVE affects multiple versions of Siemens products including SIMATIC PCS 7 and SIMATIC WinCC.

What is CVE-2021-40360?

This CVE identifies a vulnerability in various Siemens products, potentially exposing sensitive information to unauthorized actors.

The Impact of CVE-2021-40360

The vulnerability allows the password hash of a local user account to be exposed, enabling unauthorized access by brute-forcing the hash.

Technical Details of CVE-2021-40360

The technical aspects of the CVE provide insight into the vulnerability and affected systems.

Vulnerability Description

The vulnerability allows an authenticated attacker to access the password hash of a local user account on the server via a public API.

Affected Systems and Versions

SIMATIC PCS 7 V8.2 (All versions)
SIMATIC PCS 7 V9.0 (All versions)
SIMATIC PCS 7 V9.1 (All versions < V9.1 SP1)
SIMATIC WinCC V15 and earlier (All versions < V15 SP1 Update 7)
SIMATIC WinCC V16 (All versions < V16 Update 5)
SIMATIC WinCC V17 (All versions < V17 Update 2)
SIMATIC WinCC V7.4 (All versions < V7.4 SP1 Update 19)
SIMATIC WinCC V7.5 (All versions < V7.5 SP2 Update 6)

Exploitation Mechanism

An attacker with authenticated access could brute force the password hash and potentially gain unauthorized entry to the server.

Mitigation and Prevention

Mitigation strategies and preventive measures for CVE-2021-40360.

Immediate Steps to Take

Monitor for any unauthorized login attempts.
Regularly update and patch the affected systems.

Long-Term Security Practices

Implement strong password policies.
Conduct regular security assessments.

Patching and Updates

Apply the necessary patches and updates provided by Siemens to address the vulnerability.