Siemens S7-1200 Insecure Storage of HTTPS CA Certificate

CVSS 4.3 MEDIUM

CVEs (1)

CVE-2012-3037

Siemens strongly recommends the user uninstall the CA signing keys from the Web browser’s certificate store. The procedure for performing this task is specific to each browser. Once this is performed, warning messages will occur when attempting to connect to an S7-1200 PLC. The user can manually confirm the identity of the PLC and accept its certificate via the browser. This has to be done once for each S7-1200 PLC on the network.

Siemens

Siemens · SIMATIC S7-1200 V2.x

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.