← Back to home
ICSA-15-064-03  ·  Published 2025-06-05  ·  View on CISA ICS-CERT ↗

Siemens SPC Controller Series Denial-of-Service Vulnerability

CVSS 7.8 HIGH

CVEs (1)

Remediations

  • Siemens has released security advisory SSA-335471 at the following location: (http://www.siemens.com/cert/advisories)
  • Siemens has released firmware update SPC V3.6.0, which resolves this vulnerability. Siemens strongly recommends all users apply the update. (https://is.spiap.com/products/intrusion/spc/centrales.html)
  • As a general security measure Siemens strongly recommends to protect network access to the SPC panel with appropriate mechanisms.

Affected Vendors

Siemens

Affected Products (3)

Siemens · SPC4000 series <V3.6.0
Siemens · SPC5000 series <V3.6.0
Siemens · SPC6000 series <V3.6.0.

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more