Siemens SIMATIC S7-1200 CPU Web Vulnerabilities

CVEs (2)

Remediations

• Siemens has provided SIMATIC S7-1200 CPU product release V4.0, which fixes the reported vulnerabilities. Further details on the S7-1200 V4.0 release can be found here: (http://support.automation.siemens.com/WW/view/en/86567043)
• For more information on the vulnerabilities, please see Siemens Security Advisory SSA-892012 at the following location: (http://www.siemens.com/cert/advisories)
• Siemens strongly recommends protecting network access to S7-1200 CPUs with appropriate mechanisms. Siemens advises following recommended security practices and configuring the environment according to operational guidelines in order to run the devices in a protected IT environment. (http://www.industry.siemens.com/topics/global/en/industrial-security/Documents/operational_guidelines_industrial_security_en.pdf)
• Siemens recommends operating the devices only within trusted networks (information about industrial security by Siemens): (http://www.siemens.com/industrialsecurity)

Affected Vendors

Affected Products (1)