ICSA-25-044-13
·
Published 2025-05-06
·
View on CISA ICS-CERT ↗
Siemens SIMATIC PCS neo, TIA Administrator, and TIA Portal
CVSS 8.8
HIGH
CVEs (1)
Remediations
- Close browser and client after logout and remove all locally stored session tokens
- Currently no fix is planned
- Update to V19 Update 1 or later version
- Update to V3.0.4 or later version
- Update to V4.1 Update 2 or later version
- Update to V5.0 Update 1 or later version
Affected Vendors
Siemens
Affected Products (7)
Siemens
·
SIMATIC PCS neo V4.0
vers:all/*
Siemens
·
SIMATIC PCS neo V4.1
<V4.1_Update_2
Siemens
·
SIMATIC PCS neo V5.0
<V5.0_Update_1
Siemens
·
SIMOCODE ES V19
<V19_Update_1
Siemens
·
SIRIUS Safety ES V19 (TIA Portal)
<V19_Update_1
Siemens
·
SIRIUS Soft Starter ES V19 (TIA Portal)
<V19_Update_1
Siemens
·
TIA Administrator
<V3.0.4
Affected Sectors
Critical Manufacturing
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more