← Back to home
ICSA-18-254-05  ·  Published 2020-02-10  ·  View on CISA ICS-CERT ↗

Siemens SCALANCE X Switches

CVSS 8.6 HIGH

CVEs (1)

Remediations

  • Protect network access to the integrated web server on port 443/tcp with appropriate mechanisms: Restrict network access to port 443/tcp to trusted IP addresses, and avoid running vulnerability scanning tools from trusted IP addresses on affected devices.
  • Update to V4.1.2 https://support.industry.siemens.com/cs/us/en/view/109753720

Affected Vendors

Siemens

Affected Products (3)

Siemens · SCALANCE X-300 switch family (incl. SIPLUS NET variants) <V4.0.0
Siemens · SCALANCE X408 <V4.0.0
Siemens · SCALANCE X414 vers:all/*

Affected Sectors

Multiple

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more