ICSA-22-041-05
·
Published 2022-08-09
·
View on CISA ICS-CERT ↗
Siemens SICAM TOOLBOX II (Update A)
CVSS 9.9
CRITICAL
CVEs (1)
Remediations
- Alternatively, restrict port 1522/tcp access to localhost or specific ip<br/> addresses only, as documented in the updated security manual (chapter 3.6.7) [1], which is also included in the SICAM TOOLBOX II, V07.01 package [2] [1] https://support.industry.siemens.com/cs/ww/en/view/109757707 [2] https://support.industry.siemens.com/cs/ww/en/view/109805672
- Install hotfix V7.01 HF01 [3]. Among other things, this update will disable the port 1522 in the ORACLE configuration file LISTENER.ORA by default. The currently installed and/or from customer modified configuration file LISTENER.ORA is backed up. See the release notes for more information. [3] https://support.industry.siemens.com/cs/ww/en/view/109811251
- Currently no fix is planned
Affected Vendors
Siemens
Affected Products (1)
Siemens
·
SICAM TOOLBOX II
vers:all/*
Affected Sectors
Multiple
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more