Serial number: AV25-072
Date: February 11, 2025
On February 11, 2025, Siemens published advisories to address vulnerabilities in multiple products. Included were updates for the following:
- APOGEE PXC Series (BACnet) – all versions
- APOGEE PXC Series (P2 Ethernet) – all versions
- Opcenter Intelligence – versions prior to 2501
- OpenV2G – versions prior to 0.9.6
- Questa/ModelSim – versions prior to 2025.1
- RUGGEDCOM APE1808 – versions prior to 7.4.5
- SCALANCE M-800 family (incl. S615, MUM-800 and RM1224) – versions prior to 7.1.2
- SCALANCE W-700 IEEE 802.11ax family – versions prior to 3.0.0
- SIMATIC Drive Controller family – versions prior to 3.1.2
- SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) – all versions
- SIMATIC IPC DiagBase – all versions
- SIMATIC IPC DiagMonitor – all versions
- SIMATIC PCS neo – multiple versions
- SIMATIC S7-1200 CPU family V4 (incl. SIPLUS variants) – versions prior to 4.7
- SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants) – versions prior to 3.1.2
- SIMATIC S7-1500 Software Controller – all versions
- SIMATIC S7-PLCSIM Advanced – versions prior to 7.0
- SIPROTEC 5 - CP050 Devices – versions prior to 9.90
- SIPROTEC 5 - CP100 Devices – all versions
- SIPROTEC 5 - CP150 Devices – versions prior to 9.90
- SIPROTEC 5 - CP200 Devices – all versions
- SIPROTEC 5 - CP300 Devices – versions prior to 9.90
- SIPROTEC 5 Communication Modules – versions prior to 9.90
- TALON TC Series (BACnet) – all versions
- Teamcenter – versions prior to 14.3.0.0
- TIA Administrator – versions prior to 3.0.4
- Totally Integrated Automation Portal (TIA Portal) – versions prior to 19 Update 1
The Cyber Centre encourages users and administrators to review the provided web link, perform the suggested mitigations and apply the necessary updates.