← Back to home
ICSA-21-287-09  ·  Published 2025-05-06  ·  View on CISA ICS-CERT ↗

Siemens SIMATIC Process Historian

CVSS 9.8 CRITICAL

CVEs (1)

Remediations

  • Consider upgrading to a newer SIMATIC Process Historian version
  • Currently no remediation is planned
  • Update to SP3 Update 6 or later version
  • Update to 2020 Update 2 or later version
  • To update, use the Process Historian version as bundled with PCS neo V3.1 Upd1 (https://support.industry.siemens.com/cs/ww/en/view/109804750/) or with PCS 7 V9.1 SP1 (https://support.industry.siemens.com/cs/ww/en/view/109805073/)
  • Deactivate following incoming rules in the local Windows firewall: - PH Redundancy Services - PH Wcf MessageQueue Service (RedundancyMaintenanceService) - PH Wcf MessageQueue Service (SqlMirroringSetup) - PH Wcf MessageQueue Service (MaintenanceService) - PH SQL-Server Mirroring Port (UDP) - PH SQL-Server Mirroring Port (TCP)
  • In case SIMATIC Process Historian is used as a redundant system, restrict remote IP addresses in the firewall rules to allow only access for the Master, the Standby and the Mirror server

Affected Vendors

Siemens

Affected Products (4)

Siemens · SIMATIC Process Historian 2013 and earlier vers:all/*
Siemens · SIMATIC Process Historian 2014 <SP3_Update_6
Siemens · SIMATIC Process Historian 2019 vers:all/*
Siemens · SIMATIC Process Historian 2020 vers:all/*

Affected Sectors

Multiple

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more