[Control systems] Siemens security advisory (AV24-568)

From: Canadian Centre for Cyber Security

Serial number: AV24-568
Date: October 8, 2024

On October 8, 2024, Siemens published security advisories to address vulnerabilities in multiple products. Included were updates for the following:

  • HiMed Cockpit – versions prior to V11.6.2
  • JT2Go – versions prior to V2406.0003
  • PSS(R)SINCAL – versions prior to V6.70
  • Questa/ModelSim – versions prior to V2024.3
  • RUGGEDCOM APE1808LNX CC – versions prior to V24.3.1
  • RUGGEDCOM APE1808LNX – versions prior to V24.3.1
  • SENTRON 7KM PAC3200 – all versions
  • SENTRON Powercenter 1000 – all versions
  • SIMATIC Drive Controller family – versions prior to V3.1.4
  • SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) – all versions
  • SIMATIC ET 200SP Open Controller CPU 1515SP PC2 – all versions
  • SIMATIC S7-1200 CPU family V4 – all versions
  • SIMATIC S7-1500 CPU family – all versions
  • SIMATIC S7-1500 Software Controller – all versions
  • SIMATIC S7-PLCSIM Advanced – all versions
  • Siemens SINEC Security Monitor – versions prior to V4.9.0
  • Simcenter Nastran 2306 – all versions
  • Simcenter Nastran 2312 – all versions
  • Simcenter Nastran 2406 – versions prior to V2406.5000
  • Teamcenter Visualization V14.2 – versions prior to V14.2.0.13
  • Teamcenter Visualization V14.3 – versions prior to V14.3.0.11
  • Teamcenter Visualization V2312 – versions prior to V2312.0008
  • Teamcenter Visualization V2406 – versions prior to V2406.0003
  • Tecnomatix Plant Simulation V2302 – versions prior to V2302.0016
  • Tecnomatix Plant Simulation V2404 – versions prior to V2404.0005

The Cyber Centre encourages users and administrators to review the provided web link and apply the necessary updates.

Date modified: