ICSA-24-256-15
·
Published 2025-07-08
·
View on CISA ICS-CERT ↗
Siemens Industrial Products
CVSS 8.1
HIGH
CVEs (1)
Remediations
- Disable SSH when possible
- Limit remote access to the SSH port (default: 22/tcp) to trusted systems only
- Change the default SSH port (22/tcp) to a nonstandard port to minimize success of automated attacks
- Currently no fix is planned
- Update to V1.0 HF1 or later version
- Update to V3.2 SP2 or later version
- Update to V6.24 or later version Updated software version can be obtained from Siemens customer support or a local partner.
Affected Vendors
Siemens
Affected Products (4)
Siemens
·
Industrial Edge Management OS (IEM-OS)
vers:all/*
Siemens
·
SINAMICS IIoT module
<V1.0_HF1
Siemens
·
SINEMA Remote Connect Server
<V3.2_SP2
Siemens
·
SINUMERIK ONE
vers:all/<V6.24
Affected Sectors
Critical Manufacturing
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more