← Back to home
ICSA-18-088-03  ·  Published 2025-05-06  ·  View on CISA ICS-CERT ↗

Siemens SIMATIC PCS 7, SIMATIC WinCC, SIMATIC WinCC Runtime Professional, and SIMATIC NET PC Software (Update G)

CVSS 7.5 HIGH

CVEs (1)

Remediations

  • Currently no fix is planned
  • Update to OpenPCS 7 V8.1 Upd 5 or later version
  • See remediation for PCS 7 V8.2
  • See remediation for PCS 7 V9.0
  • Update to SIMATIC BATCH V8.0 SP1 Upd21 or later version
  • Update to SIMATIC BATCH V8.1 SP1 Upd16 or later version
  • Update to SIMATIC BATCH V8.2 Upd10 or later version
  • Update to V14 SP1 Update 14 or later version
  • Update to V15 SP1 or later version
  • Update to V8.2 SP1 or later version
  • Update to V9.0 SP1 (Includes Open PCS 7 V9.0 Upd1, SIMATIC Batch V9.0 SP1, SIMATIC Route Control V9.0 Upd1 and SIMATIC WinCC V7.4 SP1 Upd4).
  • Update to V13 SP2 Upd2 or later version
  • Update to V14 SP1 Upd5 or later version
  • Update to WinCC 7.2 Upd 15 or later version
  • Update to WinCC 7.3 Upd 16 or later version
  • Update to V7.4 SP1 Upd 4 or later version
  • Ensure that SIMATIC WinCC, SIMATIC WinCC Runtime Professional and SIMATIC PCS 7 stations communicate via encrypted channels (i.e. activate feature “Encrypted Communication” in SIMATIC WinCC V7.3 or newer and SIMATIC PCS 7 V8.1 or newer). Enabling “Encrypted Communication” completely mitigates the vulnerability.
  • Use VPN for protecting network communication between cells

Affected Vendors

Siemens

Affected Products (27)

Siemens · OpenPCS 7 V7.1 and earlier vers:all/*
Siemens · OpenPCS 7 V8.0 vers:all/*
Siemens · OpenPCS 7 V8.1 <V8.1_Upd5
Siemens · OpenPCS 7 V8.2 vers:all/*
Siemens · OpenPCS 7 V9.0 <V9.0_Upd1
Siemens · SIMATIC BATCH V7.1 and earlier vers:all/*
Siemens · SIMATIC BATCH V8.0 <V8.0_SP1_Upd21
Siemens · SIMATIC BATCH V8.1 <V8.1_SP1_Upd16
Siemens · SIMATIC BATCH V8.2 <V8.2_Upd10
Siemens · SIMATIC BATCH V9.0 <V9.0_SP1
Siemens · SIMATIC NET PC Software V14 <V14_SP1_Update_14
Siemens · SIMATIC NET PC Software V15 <15_SP1
Siemens · SIMATIC PCS 7 V7.1 and earlier vers:all/*
Siemens · SIMATIC PCS 7 V8.0 vers:all/*
Siemens · SIMATIC PCS 7 V8.1 vers:all/*
Siemens · SIMATIC PCS 7 V8.2 <V8.2_SP1
Siemens · SIMATIC PCS 7 V9.0 <V9.0_SP1
Siemens · SIMATIC Route Control V7.1 and earlier vers:all/*
Siemens · SIMATIC Route Control V8.0 vers:all/*
Siemens · SIMATIC Route Control V8.1 vers:all/*
Siemens · SIMATIC Route Control V8.2 vers:all/*
Siemens · SIMATIC Route Control V9.0 <V9.0_Upd1
Siemens · SIMATIC WinCC Runtime Professional V13 <V13_SP2_Upd2
Siemens · SIMATIC WinCC Runtime Professional V14 <V14_SP1_Upd5
Siemens · SIMATIC WinCC V7.2 and earlier <WinCC_7.2_Upd_15
Siemens · SIMATIC WinCC V7.3 <WinCC_7.3_Upd_16
Siemens · SIMATIC WinCC V7.4 <V7.4_SP1_Upd_4

Affected Sectors

Multiple

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more