← Back to home
ICSA-20-224-04  ·  Published 2020-08-11  ·  View on CISA ICS-CERT ↗

Siemens SCALANCE, RUGGEDCOM

CVSS 9.8 CRITICAL

CVEs (1)

Remediations

  • Only use the PPP functionality of the affected devices in trusted environments. This functionality is not enabled by default but typically used in internet dial-in or Point-to-Point connection scenarios. At this point the vulnerability could be exploited by a malicious peer.
  • Update to V6.3

Affected Vendors

Siemens

Affected Products (2)

Siemens · RUGGEDCOM RM1224 <V6.3
Siemens · SCALANCE M-800 / S615 <V6.3

Affected Sectors

Multiple

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more