ICSA-24-256-06
·
Published 2025-05-13
·
View on CISA ICS-CERT ↗
Siemens Automation License Manager
CVSS 8.6
HIGH
CVEs (1)
Remediations
- On the Automation License Manager settings menu disable "Allow Remote Connections"
- If remote connections are needed, limit remote access to port 4410/tcp to trusted systems only
- Currently no fix is planned
- Update to V6.0 SP12 Upd3 or later version
- Update to V6.2 Upd3 or later version
Affected Vendors
Siemens
Affected Products (3)
Siemens
·
Automation License Manager V5
vers:all/*
Siemens
·
Automation License Manager V6.0
<V6.0_SP12_Upd3
Siemens
·
Automation License Manager V6.2
<V6.2_Upd3
Affected Sectors
Critical Manufacturing, Transportation Systems, Energy, Healthcare and Public Health, Financial Services, Government Services and Facilities
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more