← Back to home
ICSA-17-173-01  ·  Published 2017-06-22  ·  View on CISA ICS-CERT ↗

Siemens SIMATIC CP 44x-1 Redundant Network Access Modules

CVSS 9.8 CRITICAL

Risk Summary

ATTENTION: Remotely exploitable/low skill level to exploit.

CVEs (1)

Remediations

  • Siemens has released firmware update, Version 1.4.1, for the SIMATIC CP 44x-1 RNA modules that fixes the vulnerability and is available at the following location:
  • https://support.industry.siemens.com/cs/ww/en/view/109748227.
  • Siemens recommends that users apply the firmware update.
  • Siemens recommends that users apply the following mitigations until the firmware update can be applied:
  • https://www.siemens.com/cert/operational-guidelines-industrial-security
  • https://www.siemens.com/industrialsecurity

Affected Vendors

Siemens

Affected Products (1)

Siemens · SIMATIC CP 44x-1 RNA < 1.4.1

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more