← Back to home
ICSA-24-319-10  ·  Published 2025-05-06  ·  View on CISA ICS-CERT ↗

Siemens TeleControl Server

CVSS 10.0 CRITICAL

CVEs (1)

Remediations

  • Disable redundancy, if not used
  • Restrict access to the affected systems to trusted IP addresses only
  • Update to V3.1.2.1 or later version

Affected Vendors

Siemens

Affected Products (13)

Siemens · PP TeleControl Server Basic 8 to 32 V3.1 (6NH9910-0AA31-0AB1) <V3.1.2.1
Siemens · PP TeleControl Server Basic 32 to 64 V3.1 (6NH9910-0AA31-0AF1) <V3.1.2.1
Siemens · PP TeleControl Server Basic 64 to 256 V3.1 (6NH9910-0AA31-0AC1) <V3.1.2.1
Siemens · PP TeleControl Server Basic 256 to 1000 V3.1 (6NH9910-0AA31-0AD1) <V3.1.2.1
Siemens · PP TeleControl Server Basic 1000 to 5000 V3.1 (6NH9910-0AA31-0AE1) <V3.1.2.1
Siemens · TeleControl Server Basic 8 V3.1 (6NH9910-0AA31-0AA0) <V3.1.2.1
Siemens · TeleControl Server Basic 32 V3.1 (6NH9910-0AA31-0AF0) <V3.1.2.1
Siemens · TeleControl Server Basic 64 V3.1 (6NH9910-0AA31-0AB0) <V3.1.2.1
Siemens · TeleControl Server Basic 256 V3.1 (6NH9910-0AA31-0AC0) <V3.1.2.1
Siemens · TeleControl Server Basic 1000 V3.1 (6NH9910-0AA31-0AD0) <V3.1.2.1
Siemens · TeleControl Server Basic 5000 V3.1 (6NH9910-0AA31-0AE0) <V3.1.2.1
Siemens · TeleControl Server Basic Serv Upgr (6NH9910-0AA31-0GA1) <V3.1.2.1
Siemens · TeleControl Server Basic Upgr V3.1 (6NH9910-0AA31-0GA0) <V3.1.2.1

Affected Sectors

Multiple

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more