← Back to home
ICSA-15-202-02  ·  Published 2025-06-25  ·  View on CISA ICS-CERT ↗

Siemens Sm@rtClient Password Storage Vulnerability

CVSS 2.1 LOW

CVEs (1)

Remediations

  • Siemens has released SIMATIC WinCC Sm@rtClient V01.00.01.00 for Android, which fixes these vulnerabilities and recommends updating as soon as possible.
  • The new version of Sm@rtClient can be obtained via Google’s Play Store: (https://play.google.com/store/apps/details?id=com.siemens.smartclient)
  • The new version of Sm@rtClient for US customers can be obtained via Google’s Play Store: (https://play.google.com/store/apps/details?id=com.siemens.smartclient_us)
  • The new version of Sm@rtClient Lite can be obtained via Google’s Play Store: (https://play.google.com/store/apps/details?id=com.siemens.smartclient_lite)
  • The new version of Sm@rtClient Lite for US customers can be obtained via Google’s Play Store: (https://play.google.com/store/apps/details?id=com.siemens.smartclient_us_lite)
  • For more information on these vulnerabilities and detailed instructions, please see Siemens Security Advisory SSA- 267489 at the following location: (http://www.siemens.com/cert/advisories)

Affected Vendors

Siemens

Affected Products (2)

Siemens · SIMATIC WinCC Sm@rtClient for Android <V01.00.01.00
Siemens · SIMATIC WinCC Sm@rtClient Lite for Android <V01.00.01.00.

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more