Number: AV22-022
Date: 13 January 2022
On 11 January 2022 Siemens published Security Advisories to address vulnerabilities in the following products:
- COMOS – versions prior to 10.4.1
- PLUSCONTROL 1st Generation – all versions
- SICAM A8000 – multiple models, versions prior to 16.20
- SICAM PQ Analyzer – versions prior to 3.18
- SIPROTEC 5 – multiple models, versions prior to 8.83
Exploitation of these vulnerabilities could lead to denial-of-service, disclosure of sensitive information, privilege escalation and unauthorized access.
The Cyber Centre encourages users and administrators to review the provided web link, perform the suggested mitigations and apply the necessary updates.