Siemens SIMATIC S7-1200 CSRF Vulnerability

CVEs (1)

Remediations

• Siemens provides firmware update V4.1.3 for SIMATIC S7-1200 V4 CPUs which fixes the vulnerability and recommends customers to update to the new fixed version. This update can be found on their web site at the following locations: (https://support.industry.siemens.com/cs/ww/en/ps/13685/dl) (https://support.industry.siemens.com/cs/ww/en/ps/13686/dl)
• As a general security measure Siemens strongly recommends to protect network access to the web interface of S7-1200 CPUs with appropriate mechanisms. Siemens advises to configure the environment according to Siemens operational guidelines in order to run the devices in a protected IT environment.
• For more information on these vulnerabilities and detailed instructions, please see Siemens Security Advisory SSA-134003 at the following location: (https://cert-portal.siemens.com/productcert/pdf/ssa-134003.pdf)

Affected Vendors

Affected Products (1)