ICSA-19-099-04 · Published 2021-03-09 · View on CISA ICS-CERT ↗

Siemens SINEMA Remote Connect (Update A)

CVSS 8.3 HIGH

Risk Summary

Successful exploitation of these vulnerabilities could allow an attacker to circumvent the system authorization for certain functionalities, and to execute privileged functions.

CVEs (5)

CVE-2018-14618 CVE-2018-16890 CVE-2019-3822 CVE-2019-3823 CVE-2019-6570

Remediations

Turn off NTLM authentication to mitigate CVE-2018-16890 and CVE-2019-3822
Turn off SMTP to mitigate CVE-2019-3823
Update to V2.0 HF1 - Download: https://support.industry.siemens.com/cs/de/en/view/109764829/
As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download: https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals. Additional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity
Update to V2.0 - Download: https://support.industry.siemens.com/cs/de/en/view/109764829/

Affected Vendors

Siemens

Affected Products (2)

Siemens · SINEMA Remote Connect Client All versions < V2.0 HF1

Siemens · SINEMA Remote Connect Server All versions < V2.0

Affected Sectors

Chemical, Critical Manufacturing, Energy, Food and Agriculture, Water and Wastewater

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more