← Back to home
SIEMENS-SSA-678983  ·  Published 2022-12-13  ·  View on Siemens ProductCERT ↗

SSA-678983 V1.6 (Last Update: 2022-12-13): Vulnerabilities in Industrial PCs and CNC devices using Intel CPUs (November 2020)

CVSS 7.8 HIGH

Risk Summary

<p>Intel has published information on vulnerabilities in Intel products in <a href="https://blogs.intel.com/technology/2020/11/ipas-security-advisories-for-november-2020/">November 2020</a>. This advisory lists the Siemens IPC related products, that are affected by these vulnerabilities.</p> <p>In this advisory we take a representative CVE from each advisory:</p> <ul> <li><p>“Intel CSME, SPS, TXE, AMT and DAL Advisory” Intel-SA-00391 is represented by CVE-2020-8745</p></li> <li><p>“Intel RAPL Interface Advisory” Intel-SA-00389 is represented by CVE-2020-8694</p></li> <li><p>“Intel Processor Advisory” Intel-SA-00381 is represented by CVE-2020-8698, and</p></li> <li><p>“BIOS Advisory” Intel-SA-00358 is represented by CVE-2020-0590.</p></li> </ul> <p>Siemens has released updates for the affected products and recommends to update to the latest versions.</p>

CVEs (4)

Remediations

  • Refer to Siemens ProductCERT advisory for patch and remediation guidance.

Affected Vendors

Siemens

Affected Products (1)

Siemens · SSA-678983 V1.6 (Last Update: 2022-12-13): Vulnerabilities in Industrial PCs and CNC devices using Intel CPUs (November 2020) See advisory

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more