← Back to home
ICSA-22-349-06  ·  Published 2023-01-10  ·  View on CISA ICS-CERT ↗

Siemens SIMATIC WinCC OA Ultralight Client

CVSS 5.4 MEDIUM

CVEs (1)

Remediations

  • Configure user permissions and access management according to the WinCC OA Security Guideline: https://www.winccoa.com/documentation/WinCCOA/3.18/en_US/UserAdmin/security.html
  • Update to V3.15 P038 or later version
  • Update to V3.16 P035 or later version
  • Update to V3.17 P024 or later version
  • Update to V3.18 P014 or later version

Affected Vendors

Siemens

Affected Products (4)

Siemens · SIMATIC WinCC OA V3.15 <V3.15_P038
Siemens · SIMATIC WinCC OA V3.16 <V3.16_P035
Siemens · SIMATIC WinCC OA V3.17 <V3.17_P024
Siemens · SIMATIC WinCC OA V3.18 <V3.18_P014

Affected Sectors

Multiple

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more