[Control systems] Siemens security advisory (AV22-022)

From: Canadian Centre for Cyber Security

Number: AV22-022
Date: 13 January 2022

On 11 January 2022 Siemens published Security Advisories to address vulnerabilities in the following products:

  • COMOS – versions prior to 10.4.1
  • PLUSCONTROL 1st Generation – all versions
  • SICAM A8000 – multiple models, versions prior to 16.20
  • SICAM PQ Analyzer – versions prior to 3.18
  • SIPROTEC 5 – multiple models, versions prior to 8.83

Exploitation of these vulnerabilities could lead to denial-of-service, disclosure of sensitive information, privilege escalation and unauthorized access.

The Cyber Centre encourages users and administrators to review the provided web link, perform the suggested mitigations and apply the necessary updates.

Siemens Security Publications
 

 

Report a problem on this page

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Please select all that apply:

Thank you for your help!

You will not receive a reply. For enquiries, please contact us.

Date modified: