You are here

Siemens SIMATIC PCS 7, SIMATIC WinCC, and SIMATIC NET PC (Update E) (ICSA-20-042-06) – Products Used in the Water and Wastewater and Energy Sectors

Siemens SIMATIC PCS 7, SIMATIC WinCC, and SIMATIC NET PC (Update E) (ICSA-20-042-06) – Products Used in the Water and Wastewater and Energy Sectors

Created: Wednesday, September 9, 2020 - 09:42
Categories:
Cybersecurity

September 8, 2020

CISA has updated this advisory with additional information on affected products and mitigation measures. Read the advisory at CISA.

July 14, 2020

CISA has updated this advisory with additional details on mitigation measures. Read the advisory at CISA.

May 12, 2020

CISA has updated this advisory with additional details on mitigation measures. Read the advisory at CISA.

April 14, 2020

CISA has updated this advisory with additional details on mitigation measures. Read the advisory at CISA.

February 13, 2020

CISA has published an advisory on an incorrect calculation of buffer size vulnerability in Siemens SIMATIC PCS 7, SIMATIC WinCC, and SIMATIC NET PC. Multiple products and versions of these products are affected. Successful exploitation of this vulnerability could allow an attacker with network access to cause a denial-of-service condition. Siemens has identified specific workarounds and mitigation measures. CISA also recommends a series of measures to mitigate the vulnerability. Read the advisory at CISA.