ICSA-20-105-09
·
Published 2020-04-14
·
View on CISA ICS-CERT ↗
Siemens TIM 3V-IE and 4R-IE Family Devices
CVSS 9.0
CRITICAL
CVEs (1)
Remediations
- Set the IP of the device to anything other than 192.168.1.2.
- Limit access to port 17185/udp of an affected device (e.g. cell-protection firewall or corporate firewall) to reduce the risk.
- Update to V2.8
- Update to V3.3
Affected Vendors
Siemens
Affected Products (5)
Siemens
·
TIM 3V-IE (incl. SIPLUS NET variants)
<V2.8
Siemens
·
TIM 3V-IE Advanced (incl. SIPLUS NET variants)
<V2.8
Siemens
·
TIM 3V-IE DNP3 (incl. SIPLUS NET variants)
<V3.3
Siemens
·
TIM 4R-IE (incl. SIPLUS NET variants)
<V2.8
Siemens
·
TIM 4R-IE DNP3 (incl. SIPLUS NET variants)
<V3.3
Affected Sectors
Multiple
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more