← Back to home
SIEMENS-SSA-223353  ·  Published 2022-03-08  ·  View on Siemens ProductCERT ↗

SSA-223353 V1.0: Multiple Vulnerabilities in Nucleus RTOS based SIMOTICS CONNECT 400

CVSS N/A MEDIUM

Risk Summary

<p>Multiple vulnerabilities (also known as “NUCLEUS:13”) have been identified in the Nucleus RTOS (real-time operating system), originally reported in the Siemens Security Advisory SSA-044112: <a href="https://cert-portal.siemens.com/productcert/pdf/ssa-044112.pdf" class="uri">https://cert-portal.siemens.com/productcert/pdf/ssa-044112.pdf</a>.</p> <p>SIMOTICS CONNECT 400 devices are affected by some of the vulnerabilities as documented below.</p> <p>Siemens has released an update for the SIMOTICS CONNECT 400 and recommends to update to the latest version.</p>

Remediations

  • Refer to Siemens ProductCERT advisory for patch and remediation guidance.

Affected Vendors

Siemens

Affected Products (1)

Siemens · SSA-223353 V1.0: Multiple Vulnerabilities in Nucleus RTOS based SIMOTICS CONNECT 400 See advisory

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more