← Back to home
ICSA-16-215-02A  ·  Published 2025-06-09  ·  View on CISA ICS-CERT ↗

Siemens SINEMA Server Privilege Escalation Vulnerability (Update A)

CVSS 7.3 HIGH

CVEs (1)

Remediations

  • Siemens has created a new version of SINEMA Server V13 SP2 which fixes the vulnerability and recommends users update to the new version. SINEMA Server V13 SP2 can be downloaded at the following location on the Siemens web site: (https://support.industry.siemens.com/cs/ww/en/view/109741833)
  • As a general security measure, Siemens strongly recommends protecting network access to SINEMA Server systems with appropriate mechanisms. It is advised to configure the environment according to Siemens operational guidelines in order to run the devices in a protected IT environment. For more information on this vulnerability, please see Siemens Security Advisory SSA-321174 at the following location: (http://www.siemens.com/cert/advisories)

Affected Vendors

Siemens

Affected Products (1)

Siemens · SINEMA Server <V13_SP2

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more