[Control systems] Siemens security advisory (AV24-137)

From: Canadian Centre for Cyber Security

Serial number: AV24-137
Date: March 12, 2024

On March 12, 2024, Siemens published security advisories to address vulnerabilities in the following products:

  • Cerberus PRO – multiple versions and platforms
  • RUGGEDCOM APE1808 with Fortinet NGFW – all versions
  • SCALANCE – multiple versions and platforms
  • SENTRON 3KC ATC6 Expansion Module Ethernet – all versions
  • SENTRON 7KM PAC3x20 – multiple versions and platforms
  • SIMATIC RF160B – versions prior to 2.2
  • SINEMA Remote Connect Client – versions prior to 3.1 SP1
  • SINEMA Remote Connect Server – versions prior to 3.2
  • SIPROTEC 5 – multiple versions and platforms
  • Siveillance Control – versions 2.8 to versions prior to 3.1.1
  • Sinteso – multiple versions and platforms
  • Solid Edge – versions prior to 223.0.11

The Cyber Centre encourages users and administrators to review the provided web link, perform the suggested mitigations and apply the necessary updates.

Report a problem on this page

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Please select all that apply:

Thank you for your help!

You will not receive a reply. For enquiries, please contact us.

Date modified: