The NCCIC has published an advisory on an improper access control vulnerability in TIA Administrator (TIA Portal). All versions prior to v1.0 SP1 Upd1 are affected Successful exploitation of this vulnerability could allow an execution of some commands without proper authentication. Siemens recommends users update to v1.0 SP1 Upd1 or later and restrict access to Port 8888/TCP to localhost (default). The NCCIC also advises of a series of measures for mitigating the vulnerability. Read the advisory at CISA.