ICSA-18-345-02 Siemens SINUMERIK Controllers (Update A)

CVEs (10)

Remediations

• Update to V4.7 SP6 HF1 and follow recommendations from section Workarounds and Mitigations. - Download: SINUMERIK software can be obtained from your local Siemens account manager.
• Update to V4.7 SP6 HF5 and follow recommendations from section Workarounds and Mitigations. - Download: SINUMERIK software can be obtained from your local Siemens account manager.
• Update to V4.8 SP3 and follow recommendations from section Workarounds and Mitigations. - Download: SINUMERIK software can be obtained from your local Siemens account manager.
• Siemens has identified the following specific workarounds and mitigations thatcustomers can apply to reduce the risk:firewall on port X130privilege approach Check and restore default settings (4842/tcp and 5900/tcp blocked) for
• Siemens has identified the following specific workarounds and mitigations thatcustomers can apply to reduce the risk:firewall on port X130privilege approach Restrict system access to authorized personnel and follow a least
• Siemens has identified the following specific workarounds and mitigations thatcustomers can apply to reduce the risk:firewall on port X130privilege approach Apply cell protection concept
• Siemens has identified the following specific workarounds and mitigations thatcustomers can apply to reduce the risk:firewall on port X130privilege approach Use VPN for protecting network communication between cells
• Siemens has identified the following specific workarounds and mitigations thatcustomers can apply to reduce the risk:firewall on port X130privilege approach Apply Defense-in-Depth
• Update to V4.91 and follow recommendations from section Workarounds and Mitigations. - Download: SINUMERIK software can be obtained from your local Siemens account manager.

Affected Vendors

Affected Products (5)

Affected Sectors

Multiple