← Back to home
ICSA-21-131-06  ·  Published 2025-05-06  ·  View on CISA ICS-CERT ↗

Siemens SNMP Implementation of WinCC Runtime

CVSS 5.3 MEDIUM

CVEs (1)

Remediations

  • Update to V16 Update 4 or later version
  • Disable SNMP if this is supported by the product. Disabling SNMP fully mitigates the vulnerability
  • Restrict network access to port 161/udp of affected devices to trusted devices or IP addresses

Affected Vendors

Siemens

Affected Products (2)

Siemens · SIMATIC HMI Comfort Panels 1st Generation (incl. SIPLUS variants) <V16_Update_4
Siemens · SIMATIC HMI KTP Mobile Panels <V16_Update_4

Affected Sectors

Multiple

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more