← Back to home
SIEMENS-SSA-845392  ·  Published 2022-01-11  ·  View on Siemens ProductCERT ↗

SSA-845392 V1.0: Multiple Vulnerabilities in Nucleus RTOS based Siemens Energy PLUSCONTROL 1st Gen Devices

CVSS N/A MEDIUM

Risk Summary

<p>Multiple vulnerabilities (also known as “NUCLEUS:13”) have been identified in the Nucleus RTOS (real-time operating system) and reported in the Siemens Security Advisory SSA-044112: <a href="https://cert-portal.siemens.com/productcert/pdf/ssa-044112.pdf" class="uri">https://cert-portal.siemens.com/productcert/pdf/ssa-044112.pdf</a>.</p> <p>PLUSCONTROL 1st Gen devices are affected by some of the vulnerabilities as documented below.</p> <p>Siemens Energy recommends specific countermeasures for products where updates are not available.</p>

Remediations

  • Refer to Siemens ProductCERT advisory for patch and remediation guidance.

Affected Vendors

Siemens

Affected Products (1)

Siemens · SSA-845392 V1.0: Multiple Vulnerabilities in Nucleus RTOS based Siemens Energy PLUSCONTROL 1st Gen Devices See advisory

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more