ICSA-20-070-01 · Published 2024-01-09 · View on CISA ICS-CERT ↗

ICSA-20-070-01_Siemens and PKE SiNVR/SiVMS Video Server (Update B)

CVSS 9.9 CRITICAL

CVEs (12)

CVE-2019-13947 CVE-2019-18337 CVE-2019-18338 CVE-2019-18340 CVE-2019-18341 CVE-2019-18342 CVE-2019-19290 CVE-2019-19291 CVE-2019-19292 CVE-2019-19293 CVE-2019-19294 CVE-2019-19295

Remediations

Apply ACL/firewall configuration on the CCS server to ensure that only legitimate systems are able to access the configured CCS server ports. Harden the CCS server accordingly to prevent unauthorized access. Consider to apply encryption and authentication on the network (e.g., via TLS on application level or via IPSec on host level).
Update to V1.5.0 or later version
CVE-2019-18340: Harden the CCS server to prevent local access by unauthorized users
Currently no fix is planned
CVE-2019-19290, CVE-2019-19293, CVE-2019-19294: Disable the web interface of CCS if not used. Alternatively, restrict access from localhost only, or only to trusted hosts of CCS administrators. Enable TLS for the web interface of CCS.
CVE-2019-19291: Disable the FTP service of the CCS

Affected Vendors

Siemens

Affected Products (2)

Siemens · Control Center Server (CCS) <V1.5.0

Siemens · Control Center Server (CCS) >=V1.5.0

Affected Sectors

Multiple

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more