CVEs (2)
Remediations
- Do not use untrusted configuration and mapping files. Ensure that only authorized users can modify the files by implementing appropriate security settings. Simply setting the "read-only" property is not a sufficient security measure.
- Currently no fix is planned
- Update to V10.3.3.5.8 or later version The patch is available upon request from customer support
- Update to V10.4.3.0.47 or later version The patch is available upon request from customer support
- Update to V10.4.4.1.21 or later version
- Update to V10.4.4.2 or later version
- Make sure that only administrators have write-access to the configuration files, especially the network configuration. Simply setting the "read-only" property is not a sufficient security measure.
Affected Vendors
Siemens
Affected Products (7)
Siemens
·
COMOS V10.3
<V10.3.3.5.8
Siemens
·
COMOS V10.4.0
vers:all/*
Siemens
·
COMOS V10.4.1
vers:all/*
Siemens
·
COMOS V10.4.2
vers:all/*
Siemens
·
COMOS V10.4.3
<V10.4.3.0.47
Siemens
·
COMOS V10.4.4
<V10.4.4.2
Siemens
·
COMOS V10.4.4.1
<V10.4.4.1.21
Affected Sectors
Critical Manufacturing
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more