A vulnerability, which was classified as critical, has been found in Siemens SIMATIC S7-PLCSIM, SIMATIC STEP 7 Safety, SIMATIC STEP 7 Safety, SIMATIC STEP 7, SIMATIC WinCC Unified, SIMATIC WinCC, SIMOCODE ES, SIMOTION SCOUT TIA, SINAMICS Startdrive, SIRIUS Safety ES, SIRIUS Soft Starter ES and TIA Portal Cloud. Affected by this issue is some unknown functionality. The manipulation leads to deserialization.

This vulnerability is handled as CVE-2023-32736. Attacking locally is a requirement. There is no exploit available.

It is recommended to upgrade the affected component.