← Back to home
ICSA-22-349-08  ·  Published 2025-05-06  ·  View on CISA ICS-CERT ↗

Siemens Polarion ALM

CVSS 5.4 MEDIUM

CVEs (1)

Remediations

  • In the product's Apache HTTP Server configuration, check polarion.conf or polarion-cluster.conf for the below misconfiguration: RedirectMatch permanent ^/$ /polarion/ which must be changed to RedirectMatch permanent "^/$" "https://<their-polarion-host-here>/polarion/"
  • Update to V2304.0 or later version

Affected Vendors

Siemens

Affected Products (1)

Siemens · Polarion ALM <V2304.0

Affected Sectors

Multiple

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more