← Back to home
ICSA-21-257-21  ·  Published 2021-09-14  ·  View on CISA ICS-CERT ↗

Siemens Industrial Edge

CVSS 9.8 CRITICAL

Risk Summary

Successful exploitation of this vulnerability could allow an unauthenticated attacker to change the password of any user in the system resulting in the attacker being able to impersonate any valid user on the affected system.

CVEs (1)

Remediations

  • Siemens recommends affected users update to v1.3 or a later version (login required).

Affected Vendors

Siemens

Affected Products (1)

Siemens · Industrial Edge Management < 1.3

Affected Sectors

Critical Manufacturing

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more