CVE-2024-33583 Siemens CVE debrief

Who should care

Organizations operating Siemens SIMATIC RTLS Locating Manager in industrial environments, particularly those with multi-user access to RTLS infrastructure or shared Windows Server deployments. Security teams responsible for OT/ICS asset management and hardening should prioritize this low-severity update within standard patch cycles.

Technical summary

The affected application contains a hidden configuration item that enables debug functionality. An authenticated local attacker with access to the system could leverage this to gain insight into the internal configuration of the deployment. The CVSS v3.1 vector CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C indicates a local attack vector with low attack complexity, requiring low privileges and no user interaction, resulting in low confidentiality impact with no integrity or availability impact. The vulnerability affects seven product variants of SIMATIC RTLS Locating Manager (6GT2780-0DA00, 6GT2780-0DA10, 6GT2780-0DA20, 6GT2780-0DA30, 6GT2780-1EA10, 6GT2780-1EA20, 6GT2780-1EA30).

Defensive priority

low

Recommended defensive actions

• Update SIMATIC RTLS Locating Manager to V3.0.1.1 or later version available through Siemens Online Software Delivery (OSD)
• Install required RTLS Locating Manager components on a single host computer where possible and ensure only trusted persons have access to the system
• Secure the Windows Server hosting RTLS Locating Manager with a firewall and ensure no ports are accessible from untrusted networks
• Apply security hardening of the Windows Server hosting RTLS Locating Manager in accordance with corporate security policies or up-to-date hardening guidelines

Evidence notes

Evidence drawn from CISA CSAF advisory ICSA-24-137-07 and Siemens product security advisory SSA-093430. CVSS 3.3 (LOW) reflects local attack vector with low confidentiality impact.

Official resources