ICSA-21-131-14 · Published 2025-05-06 · View on CISA ICS-CERT ↗

Siemens SCALANCE W1750D (Update B)

CVSS 9.8 CRITICAL

CVEs (21)

CVE-2019-5317 CVE-2019-5319 CVE-2020-24635 CVE-2020-24636 CVE-2021-25143 CVE-2021-25144 CVE-2021-25145 CVE-2021-25146 CVE-2021-25148 CVE-2021-25149 CVE-2021-25150 CVE-2021-25155 CVE-2021-25156 CVE-2021-25157 CVE-2021-25158 CVE-2021-25159 CVE-2021-25160 CVE-2021-25161 CVE-2021-25162 CVE-2021-34617 CVE-2021-34618

Remediations

Update to V8.7.0 or later version
Block access to the Aruba Instant device IP address on port UDP/8211 from all untrusted users
Block access to the Aruba Instant Command Line Interface from all untrusted users
Block access to the Aruba Instant Web Management Interface from all untrusted users
Update to V8.7.1.3 or later version

Affected Vendors

Siemens

Affected Products (2)

Siemens · SCALANCE W1750D <V8.7.0

Siemens · SCALANCE W1750D >=V8.7.0_and_<V8.7.1.3

Affected Sectors

Multiple

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more