ICSA-23-017-03 · Published 2023-01-10 · View on CISA ICS-CERT ↗

Siemens SINEC INS

CVSS 9.9 CRITICAL

CVEs (12)

CVE-2022-2068 CVE-2022-2097 CVE-2022-2274 CVE-2022-32212 CVE-2022-32213 CVE-2022-32215 CVE-2022-32222 CVE-2022-35255 CVE-2022-35256 CVE-2022-45092 CVE-2022-45093 CVE-2022-45094

Remediations

Update to V1.0 SP2 Update 1 or later version
CVE-2022-45093: Disable the SFTP service of the affected product, if not required
CVE-2022-45094: Disable the DHCP service of the affected product, if not required

Affected Vendors

Siemens

Affected Products (1)

Siemens · SINEC INS <V1.0_SP2_Update_1

Affected Sectors

Multiple

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more