ICSA-19-043-05
·
Published 2020-02-10
·
View on CISA ICS-CERT ↗
Siemens Intel Active Management Technology of SIMATIC IPCs
CVSS 6.7
MEDIUM
CVEs (3)
Remediations
- As a prerequisite for an attack, an attacker must be able to run malicious code on affected systems. Therefore, Siemens recommends determining if it is possible that untrusted code can be run on these systems, or if existing measures implemented by the operator reduce the likelihood of untrusted code being run.
- Update to V22.01.06 https://support.industry.siemens.com/cs/us/en/view/109747626
- Update to V21.01.09 https://support.industry.siemens.com/cs/us/en/view/109747626
- Update to R1.30.0 https://support.industry.siemens.com/cs/us/en/view/109747626
- Update to R1.23.0 https://support.industry.siemens.com/cs/us/en/view/109747626
- Update to V19.02.11 https://support.industry.siemens.com/cs/us/en/view/109747626
- Update to V19.01.14 https://support.industry.siemens.com/cs/us/en/view/109747626
- Update to V23.01.04 https://support.industry.siemens.com/cs/us/en/view/109747626
Affected Vendors
Siemens
Affected Products (11)
Siemens
·
SIMATIC FieldPG M5
<V22.01.06
Siemens
·
SIMATIC IPC427E (incl. SIPLUS variants)
<V21.01.09
Siemens
·
SIMATIC IPC477E
<V21.01.09
Siemens
·
SIMATIC IPC547E
<R1.30.0
Siemens
·
SIMATIC IPC547G
<R1.23.0
Siemens
·
SIMATIC IPC627D
<V19.02.11
Siemens
·
SIMATIC IPC647D
<V19.01.14
Siemens
·
SIMATIC IPC677D
<V19.02.11
Siemens
·
SIMATIC IPC827D
<V19.02.11
Siemens
·
SIMATIC IPC847D
<V19.01.14
Siemens
·
SIMATIC ITP1000
<V23.01.04
Affected Sectors
Multiple
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more