Siemens SIMATIC WinCC Vulnerabilities (Update A)

CVSS 6.8 MEDIUM

CVEs (5)

CVE-2014-4682 CVE-2014-4683 CVE-2014-4684 CVE-2014-4685 CVE-2014-4686

Siemens has released SIMATIC WinCC V7.3, which fixes the five vulnerabilities, and recommends upgrading as soon as possible. (https://mall.industry.siemens.com/mall/de/de/Catalog/Products/10042373?tree=CatalogTree)
Additional information about SIMATIC WinCC V7.3 is available at the following location (http://support.automation.siemens.com/WW/view/en/97493192)
Siemens has released SIMATIC PCS7 V8.1, which fixes the five vulnerabilities, and recommends upgrading as soon as possible. The updated software can be ordered via the customer support web site at the following location (https://mall.industry.siemens.com/mall/de/de/Catalog/Products/10042373?tree=CatalogTree)
Additional information about the new SIMATIC PCS7 V8.1 is available at the following location (http://support.automation.siemens.com/WW/view/en/98161292)

Siemens

Siemens · SIMATIC WinCC <7.3

Siemens · SIMATIC PCS7 (as WinCC is incorporated) <8.1

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.