Your review has been sent successfully

Siemens Updates

2215
Classification
These posts contain security alerts, including digital loopholes, electronic attacks, technical updates, and they are classified base on the level of severity.

Critical

High

Medium

Low

Most Viewed Warnings

Dell EMC Alert

● Critical

F5 Alert

● High

IBM Alert

● Critical

Fortinet Alert

● High

Red Hat Alert

● High

حملات تصيدية تستهدف مايكروسوفت تيمز (Microsoft Teams)

● High

Warning Date

Severity Level

Warning Number

Target Sector

10 June, 2020

● Critical

2020-1341

All - Manufacturing - Other

Description:

Siemens has released security updates to address vulnerabilities in the following products:

  • SINUMERIK Access MyMachine /P2P:
    • Versions prior to 4.8
  • SINUMERIK PCU base Win10 software /IPC:
    • Versions prior to 14.00
  • SINUMERIK PCU base Win7 software /IPC:
    • Versions prior to 12.01 HF4
  • LOGO!8 BM (incl. SIPLUS variants):
    • All versions
  • SIMATIC PCS 7:
    • All versions
  • SIMATIC PDM:
    • All versions
  • SIMATIC STEP 7 V5.X:
    • Versions prior to 5.6 SP2 HF3
  • SINAMICS STARTER (containing STEP 7 OEM version ):
    • Versions prior to 5.4 HF1
  • SIMATIC Automation Tool:
    • All versions
  • SIMATIC NET PC software:
    • Versions prior to 16 Upd3
  • SIMATIC PCS 7:
    • All versions
  • SIMATIC PCS neo:
    • All versions
  • SIMATIC ProSave:
    • All versions
  • SIMATIC S7-1500 Software Controller:
    • All versions
  • SIMATIC STEP 7:
    • Versions prior to 5.6 SP2 HF3
  • SIMATIC STEP 7 (TIA Portal) V13:
    • All versions
  • SIMATIC STEP 7 (TIA Portal) V14:
    • All versions
  • SIMATIC STEP 7 (TIA Portal) V15:
    • All versions
  • SIMATIC STEP 7 (TIA Portal) V16:
    • All versions
  • SIMATIC WinCC OA V3.16:
    • Versions prior to P018
  • SIMATIC WinCC OA V3.17:
    • Versions prior to P003
  • SIMATIC WinCC Runtime Advanced:
    • All versions
  • SIMATIC WinCC Runtime Professional V13:
    • All versions
  • SIMATIC WinCC Runtime Professional V14:
    • All versions
  • SIMATIC WinCC Runtime Professional V15:
    • All versions
  • SIMATIC WinCC Runtime Professional V16:
    • All versions
  • SIMATIC WinCC V7.4:
    • Versions prior to 7.4 SP1 Update 14
  • SIMATIC WinCC V7.5:
    • Versions prior to 7.5 SP1 Update 3
  • SINAMICS STARTER commissioning tool:
    • All versions
  • SINAMICS Startdrive:
    • All versions
  • SINEC NMS:
    • All versions
  • SINEMA Server:
    • All versions
  • SINUMERIK ONE virtual:
    • All versions
  • SINUMERIK Operate:
    • All versions

Threats:

An attacker could exploit these vulnerabilities by doing the following:

  • Denial of service attack (DoS)
  • Execute arbitrary code remotely
  • Privilege escalation

Best practice and Recommendations:

The CERT team encourages users to review Siemens security advisory and apply the necessary updates:

Last updated at 10 June, 2020

Rate the content

rate-icon
up icon