[Control systems] Siemens security advisory (AV24-013)

From: Canadian Centre for Cyber Security

Serial number: AV24-013
Date: January 09, 2024

On January 9, 2024, Siemens published security advisories to address vulnerabilities in multiple products. Included were updates for the following:

  • CP-8031 MASTER MODULE (6MF2803-1AA00) – firmware versions prior to CPCI85 V05.20
  • CP-8050 MASTER MODULE (6MF2805-0AA00) – firmware versions prior to CPCI85 V05.20
  • JT2Go – versions 14.3.0.6 and prior
  • SIMATIC CN 4100 – versions prior to 2.7
  • SIMATIC IPC647E – maxView Storage Manager versions prior to 4.14.00.26068
  • SIMATIC IPC847E – maxView Storage Manager versions prior to 4.14.00.26068
  • SIMATIC IPC1047E – maxView Storage Manager versions prior to 4.14.00.26068
  • Solid Edge SE2023 – versions prior to 223.0 Update 10
  • Spectrum Power 7 – versions prior to V23Q4
  • Teamcenter Visualization – multiple versions

The Cyber Centre encourages users and administrators to review the provided web link, perform the suggested mitigations and apply the necessary updates.

Report a problem on this page

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Please select all that apply:

Thank you for your help!

You will not receive a reply. For enquiries, please contact us.

Date modified: