← Back to home
SIEMENS-SSA-406175  ·  Published 2019-05-24  ·  View on Siemens ProductCERT ↗

SSA-406175 (Last Update: 2019-05-24): Vulnerability in Siemens Healthineers Software Products

CVSS N/A MEDIUM

Risk Summary

<p>Microsoft has released updates for Windows XP, Windows 7, Windows Server 2008, and Windows Server 2008 R2 to fix a vulnerability in the Remote Desktop Service. The vulnerability could allow an unauthenticated remote attacker to execute arbitrary code in the target system if the system exposes the service to the network.</p> <p>Some Siemens Healthineers software products are affected by this vulnerability. The exploitability of the vulnerability depends on the specific configuration and deployment environment of each product.</p> <p>Siemens Healthineers recommends installing the appropriate security patches released by Microsoft. The compatibility of Microsoft security patches with products from Siemens Healthineers that are beyond their End of Support date cannot be guaranteed.</p>

Remediations

  • Refer to Siemens ProductCERT advisory for patch and remediation guidance.

Affected Vendors

Siemens

Affected Products (1)

Siemens · SSA-406175 (Last Update: 2019-05-24): Vulnerability in Siemens Healthineers Software Products See advisory

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more