Claroty has found a severe memory protection bypass vulnerability ( CVE-2020-15782 ) in Siemens PLCs, the SIMATIC S7-1200 and S7-1500. An attacker could abuse this vulnerability on PLCs with disabled access protection to gain read and write access anywhere on the #PLC and remotely execute malicious code. This new vulnerability not only allows an attacker to execute native code on Siemens S7 controllers but also bypasses detection by the underlying operating system or any diagnostic software by leaving the user sandbox to inject arbitrary data and code directly into protected memory areas. #rce #isc #cyber #threats

https://claroty.com/2021/05/28/blog-research-race-to-native-code-execution-in-plcs/