CISA has published an advisory on a business logic errors vulnerability in Siemens SIMOTICS, Desigo, APOGEE, and TALON. Numerous products and versions of these products are affected. Successful exploitation of this vulnerability could allow an attacker to affect the availability and integrity of the device. Siemens recommends mitigations and workarounds for the affected products. CISA also recommends a series of measures to mitigate the vulnerability. Read the advisory at CISA.
H2OSecCon Spring 2024 - featuring panels and briefings on cybersecurity, physical security, operational resilience, and more - is on May 23. REGISTER NOW!