ICSA-24-256-16
·
Published 2025-12-09
·
View on CISA ICS-CERT ↗
Siemens Third-Party Component in SICAM and SITIPE Products
CVSS 8.2
HIGH
CVEs (1)
Remediations
- Update to V3.21 or later version
- Update to V9.14 HF2 or later version
- Update to V03.27 or later version The firmware ET85 V3.27 is present within “CP-8000/CP-8021/CP-8022 Package” V16.52
- Update to V05.30 or later version The firmware ETI5 V5.30 is present within “CP-8031/CP-8050 Package” V5.30 https://support.industry.siemens.com/cs/ww/en/view/109804985/
Affected Vendors
Siemens
Affected Products (4)
Siemens
·
ET85 Ethernet Interface IEC61850 Ed.2
vers:intdot/<03.27
Siemens
·
ETI5 Ethernet Int. 1x100TX IEC61850
vers:intdot/<05.30
Siemens
·
SICAM SCC
<V9.14_HF2
Siemens
·
SITIPE AT
vers:intdot/<3.21
Affected Sectors
Chemical, Critical Manufacturing, Energy, Food and Agriculture, Water and Wastewater
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more