Siemens SIMATIC SmartVNC HMI WinCC Products (Update B)

CVSS 9.8 CRITICAL

CVEs (7)

CVE-2021-25660 CVE-2021-25661 CVE-2021-25662 CVE-2021-27383 CVE-2021-27384 CVE-2021-27385 CVE-2021-27386

Update SIMATIC WinCC (TIA Portal) to V15.1 Update 6, and then update panel to V15.1 Update 6
Update SIMATIC WinCC (TIA Portal) to V16 Update 4 or later version, and then update panel to V16 Update 4 or later version
Update to V15.1 Update 6
Update to V16 Update 4 or later version
Restrict access to port 5900/tcp to trusted IP addresses only

Siemens

Siemens · SIMATIC HMI Comfort Outdoor Panels V15 7" & 15" (incl. SIPLUS variants) <V15.1_Update_6

Siemens · SIMATIC HMI Comfort Outdoor Panels V16 7" & 15" (incl. SIPLUS variants) <V16_Update_4

Siemens · SIMATIC HMI Comfort Panels V15 4" - 22" (incl. SIPLUS variants) <V15.1_Update_6

Siemens · SIMATIC HMI Comfort Panels V16 4" - 22" (incl. SIPLUS variants) <V16_Update_4

Siemens · SIMATIC HMI KTP Mobile Panels V15 KTP400F, KTP700, KTP700F, KTP900 and KTP900F <V15.1_Update_6

Siemens · SIMATIC HMI KTP Mobile Panels V16 KTP400F, KTP700, KTP700F, KTP900 and KTP900F <V16_Update_4

Siemens · SIMATIC WinCC Runtime Advanced V15 <V15.1_Update_6

Siemens · SIMATIC WinCC Runtime Advanced V16 <V16_Update_4

Multiple

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.