Siemens SIMARIS Configuration (Update A)

Risk Summary

Successful exploitation of this vulnerability could allow an attacker to gain persistence or escalate privileges within the system.

CVEs (1)

Remediations

• Siemens has released an update for SIMARIS configuration and recommends updating to v4.0.1 or later.
• Siemens has identified the following specific workarounds and mitigations users can apply to reduce the risk:
• Siemens strongly recommends protecting network access to devices with appropriate mechanisms. To operate the devices in a protected IT environment, Siemens recommends configuring the environment according to Siemens ' operational guidelines for Industrial Security and follow the recommendations in the product manuals.
• Additional information on industrial security by Siemens can be found at: https://www.siemens.com/Industrialsecurity

Affected Vendors

Affected Products (1)

Affected Sectors

Energy