All advisories
HighPublished 2023-12-19 · 1d ago

ICSA-23-353-08 · CVE-2023-44321

S7-1500 authentication bypass via S7CommPlus

A reused session token in S7CommPlus authentication allows an attacker who observed one valid handshake to forge subsequent commands, including STOP and program download.

Mitigations

  1. 01Upgrade to firmware ≥ V3.1.0
  2. 02Enable program / configuration access protection
  3. 03Disable web server on production CPUs