ICSA-17-129-01 Siemens devices using the PROFINET Discovery and Configuration Protocol (Update K)

CVEs (1)

Remediations

• Update to V4.2 HF1 - Download: https://support.industry.siemens.com/cs/ww/en/view/19440762
• Update to V3.0 - Download: https://support.industry.siemens.com/cs/ww/en/view/98161300
• Upgrade to V14 SP1 - Download: https://support.industry.siemens.com/cs/ww/en/view/109747482
• See recommendations from section Workarounds and Mitigations, or upgrade to V9.0 - Download: https://www.siemens.de/automation/partner
• Update to V8.2 SP1 - Download: To obtain SIMATIC PCS 7 V8.2 SP1 contact your local support.
• Update to V13 SP 2 - Download: https://support.industry.siemens.com/cs/ww/en/view/109745155
• Update to V14 SP 1 - Download: https://support.industry.siemens.com/cs/ww/en/view/109745984
• Update to V5.6 - Download: https://support.industry.siemens.com/cs/ww/en/view/109747706
• Update to SIMATIC WinAC RTX 2010 SP3 and apply BIOS and Microsoft Windows updates - Download: https://support.industry.siemens.com/cs/ww/en/view/109765109
• Update to V13 SP2 - Download: https://support.industry.siemens.com/cs/ww/en/view/109746073
• Update to V14 SP 1 - Download: https://support.industry.siemens.com/cs/ww/en/view/109745460
• See recommendations from section Workaround and Mitigations
• Update to V7.3 Update 15 - Download: https://support.industry.siemens.com/cs/ww/en/view/109750182
• Update to V7.4 SP1 Upd1 - Download: https://support.industry.siemens.com/cs/ww/en/view/109748024
• Upgrade to WinCC flexible 2008 SP5 - Download: https://support.industry.siemens.com/cs/ww/en/view/109749111
• 15 Update SIMATIC WinCC to V7.3 Update 15 or newer - Download: https://support.industry.siemens.com/cs/ww/en/view/109750182
• Upgrade to V14 - Download: https://support.industry.siemens.com/cs/ww/en/view/109748854
• Update to V4.7 SP4 HF2 - Download: SINUMERIK software can be obtained from your local Siemens account manager
• Update to V2.3 - Download: SMART PC Access V2.3 can be obtained by contacting your local Siemens representative or customer support: https://w3.siemens.com/aspa_app/
• Update to V2.3 - Download: Micro/WIN SMART V2.3 can be obtained by contacting your local Siemens representative or customer support: https://w3.siemens.com/aspa_app/
• Update to V5.0 - Download: https://support.industry.siemens.com/cs/de/en/view/109747539
• Siemens has identified the following specific workarounds and mitigations thatcustomers can apply to reduce the risk: Apply cell protection concept
• Siemens has identified the following specific workarounds and mitigations thatcustomers can apply to reduce the risk: Use VPN for protecting network communication between cells
• Siemens has identified the following specific workarounds and mitigations thatcustomers can apply to reduce the risk: Apply Defense-in-Depth

Affected Vendors

Affected Products (21)

Affected Sectors

Multiple