Siemens SCALANCE X-200IRT Switch Family User Impersonation Vulnerability

CVEs (1)

Remediations

• Siemens provides firmware update V 5.2.0, which fixes the vulnerabilities, and recommends updating as soon as possible. The firmware update is available at: (http://support.automation.siemens.com/WW/view/en/108892137)
• Siemens strongly recommends protecting network access to the web interface of SCALANCE X-200IRT switches by appropriate mechanisms. It is advised to follow recommended security practices and to configure the environment according to operational guidelines in order to run the devices in a protected IT environment. Siemens operational guidelines are available at: (http://www.industry.siemens.com/topics/global/en/industrial-security/Documents/operational_guidelines_industrial_security_en.pdf)
• For more information on these vulnerabilities and detailed instructions, please see Siemens Security Advisory SSA-954136 at the following location: (http://www.siemens.com/cert/advisories)

Affected Vendors

Affected Products (1)