ICSA-15-064-02
·
Published 2025-06-06
·
View on CISA ICS-CERT ↗
Siemens SIMATIC ProSave, SIMATIC CFC, SIMATIC STEP 7, SIMOTION Scout, and STARTER Insufficiently Qualified Paths
CVSS 6.9
MEDIUM
CVEs (1)
Remediations
- Siemens provides updates for the following products and recommends customers to update to the new fixed versions: The update for SIMATIC ProSave can be obtained here: https://support.industry.siemens.com/cs/de/en/view/10347815
- The update for SIMOTION SCOUT can be obtained here: https://support.industry.siemens.com/cs/de/en/view/107586911
- The update for STARTER can be obtained here: https://support.industry.siemens.com/cs/ww/en/view/26233208
- Updates for SIMATIC STEP 7 and SIMATIC CFC can obtained via customer support at: http://www.siemens.com/automation/support-request
- For more information on these vulnerabilities and detailed instructions, please see Siemens Security Advisory SSA-451236 at the following location: http://www.siemens.com/cert/advisories
Affected Vendors
Siemens
Affected Products (15)
Siemens
·
SIMATIC ProSave
<V13_SP1
Siemens
·
SIMOTION Scout
<V4.4
Siemens
·
STARTER
<V4.4_HF3
Siemens
·
SIMATIC CFC
<V8.0_SP4
Siemens
·
CFC V8.0 SP4
<V8.0_SP4_Upd_9
Siemens
·
CFC V8.1
<V8.1_Upd1
Siemens
·
SIMATIC STEP 7 V5.5
<V5.5_SP1
Siemens
·
STEP 7 V5.5 SP1
<V5.5_SP1_HF2
Siemens
·
STEP 7 V5.5 SP2
<V5.5_SP2_HF7
Siemens
·
STEP 7 V5.5 SP3
vers:all/*
Siemens
·
STEP 7 V5.5 SP4
<V5.5_SP4_HF4
Siemens
·
SIMATIC PCS 7 (as STEP 7 and CFC are incorporated)
<V8.0_SP2
Siemens
·
PCS 7 V8.0 SP2
vers:all/*
Siemens
·
PCS 7 with STEP 7 SP4 HF4
<V8.1
Siemens
·
PCS 7 with STEP 7 CFC V8.1 Upd1
<V8.1
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more