← Back to home
ICSA-16-250-01  ·  Published 2025-06-09  ·  View on CISA ICS-CERT ↗

Siemens SIPROTEC 4 and SIPROTEC Compact Vulnerabilities

CVSS 5.3 MEDIUM

CVEs (3)

Remediations

  • Siemens provides firmware update V4.29 for EN100 modules included in SIPROTEC 4 and SIPROTEC Compact devices to fix the vulnerabilities. Siemens recommends users update to the latest firmware version.
  • The firmware update for SIPROTEC 4 can be obtained from the SIPROTEC 4 downloads area: (http://www.siemens.com/downloads/siprotec-4) (further navigation required to select correct update)
  • The firmware update for SIPROTEC Compact with EN100 module can be obtained here: (http://www.siemens.com/downloads/siprotec-compact) (further navigation required to select correct update)
  • For more information on these vulnerabilities and more detailed mitigation instructions, please see Siemens Security Advisory SSA-630413 at the following location: (http://www.siemens.com/cert/advisories)

Affected Vendors

Siemens

Affected Products (1)

Siemens · EN100 Ethernet module (as optional for SIPROTEC 4 and SIPROTEC Compact) <V4.29

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more