← Back to home
ICSA-23-012-10  ·  Published 2023-03-14  ·  View on CISA ICS-CERT ↗

Siemens Automation License Manager

CVSS 8.2 HIGH

CVEs (2)

Remediations

  • If no remote connections are needed, disable “Allow Remote Connections” on the Automation License Manager settings menu (default since version V6.0 SP2)
  • Currently no fix is planned
  • Update to V6.0 SP9 Upd4 or later version
  • If remote connections are needed, limit remote access to port 4410/tcp to trusted systems only

Affected Vendors

Siemens

Affected Products (2)

Siemens · Automation License Manager V5 vers:all/*
Siemens · Automation License Manager V6 <V6.0_SP9_Upd4

Affected Sectors

Multiple

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more