ICSA-21-103-05
·
Published 2025-03-11
·
View on CISA ICS-CERT ↗
Siemens Nucleus Products IPv6 Stack
CVSS 7.5
HIGH
CVEs (2)
Remediations
- Contact customer support or your local Nucleus Sales team for mitigation advice
- Disable IPv6 functionality, if feature not used, by deselecting the TcpIpIpV6General/IpV6Enabled Pre-Compile configuration option
- Update to the latest version of Nucleus ReadyStart V3 or V4
- Currently no fix is planned
- Update to V2017.02.4 or later version
- Update to V2303 or later version
- Update to V4.1.0 or later version
- Contact customer support to receive patch and update information
Affected Vendors
Siemens
Affected Products (6)
Siemens
·
Capital Embedded AR Classic 431-422
vers:all/*
Siemens
·
Capital Embedded AR Classic R20-11
vers:all/<V2303
Siemens
·
Nucleus NET
vers:all/*
Siemens
·
Nucleus ReadyStart V3
vers:all/<V2017.02.4
Siemens
·
Nucleus ReadyStart V4
vers:all/<V4.1.0
Siemens
·
Nucleus Source Code
vers:all/*
Affected Sectors
Critical Manufacturing, Transportation Systems, Energy, Healthcare and Public Health, Financial Services, Government Services and Facilities
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more