ICSA-18-317-01
·
Published 2018-11-13
·
View on CISA ICS-CERT ↗
ICSA-18-317-01 Siemens IEC 61850 System Configurator, DIGSI 5, DIGSI 4, SICAM PAS/PQS, SICAM PQ Analyzer, and SICAM SCC
CVSS 4.2
MEDIUM
CVEs (1)
Remediations
- Update to V5.80 - Download: https://support.industry.siemens.com/cs/ww/en/view/109740546
- Uninstall IEC 61850 system configurator or update to V7.80 - Download: https://support.industry.siemens.com/cs/ww/en/view/109758531
- Update to V4.93 - Download: https://support.industry.siemens.com/cs/ww/en/view/109740980
- Update to V8.11 - Download: https://support.industry.siemens.com/cs/us/en/view/109757831
- Update to V3.11 - Download: https://support.industry.siemens.com/cs/us/en/view/109757833
- Update to V9.02 HF3 - Download: https://support.industry.siemens.com/cs/ww/en/view/109745469
- Siemens has identified the following specific workarounds and mitigations thatcustomers can apply to reduce the risk:5885/TCP or 5886/TCP to localhost (depending on the affected product inuse). Change firewall configuration to restrict access to port 4884/TCP,
- Siemens has identified the following specific workarounds and mitigations thatcustomers can apply to reduce the risk:5885/TCP or 5886/TCP to localhost (depending on the affected product inuse). Follow Secure Substations security guidelines https://www.siemens.com/gridsecurity
Affected Vendors
Siemens
Affected Products (6)
Siemens
·
IEC 61850 system configurator
<V5.80
Siemens
·
DIGSI 5 (affected as IEC 61850 system configurator is incorporated)
<V7.80
Siemens
·
DIGSI 4
<V4.93
Siemens
·
SICAM PAS/PQS
<V8.11
Siemens
·
SICAM PQ Analyzer
<V3.11
Siemens
·
SICAM SCC
<V9.02_HF3
Affected Sectors
Multiple
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more