You are here

Siemens SINETPLAN (ICSA-19-253-02) – Product Used in the Water and Wastewater and Energy Sectors

Siemens SINETPLAN (ICSA-19-253-02) – Product Used in the Water and Wastewater and Energy Sectors

Created: Tuesday, September 10, 2019 - 15:51
Categories:
Cyber Security

The NCCIC has published an advisory on an improper authorization vulnerability in Siemens Network Planner (SINETPLAN). Version 2.0 is affected. Successful exploitation of this vulnerability could allow information disclosure, code execution, and denial-of-service. Siemens recommends users update TIA Administrator to Version 1.0 SP1 Upd1. The NCCIC also recommends a series of measures to mitigate the vulnerability. Read the advisory at CISA.