Siemens Industrial Products with OPC UA (Update F) (ICSA-19-099-03) – Products Used in the Water and Wastewater and Energy Sectors
Created: Tuesday, March 10, 2020 - 19:13
Categories: Cybersecurity
March 10, 2020
CISA has updated this advisory with additional information on the affected products. Read the advisory at CISA.
February 11, 2020
CISA has updated this advisory with additional information on the affected products and mitigating measures. Read the advisory at CISA.
January 14, 2020
CISA has updated this advisory with additional information on the affected products and mitigating measures. Read the advisory at CISA.
July 9, 2019
The NCCIC has updated this advisory with additional information on the technical details of the affected products and mitigation measures. Read the advisory at CISA.
June 11, 2019
The NCCIC has updated this advisory with additional information on the affected products and mitigating measures. Read the advisory at NCCIC/ICS-CERT.
May 14, 2019
The NCCIC has updated this advisory with additional information on the technical details of the vulnerability and mitigation measures. Read the advisory at NCCIC/ICS-CERT.
April 9, 2019
The NCCIC has published an advisory on an uncaught exception vulnerability in Siemens Industrial Products with OPC UA. Numerous products and versions of the products are affected. Successful exploitation of this vulnerability could cause a denial-of-service condition on the affected service or device. Siemens has updates for some products; for the others, Siemens is preparing further updates and recommends users apply specific workarounds and mitigations to reduce risk. The NCCIC has also provided a series of measures for mitigating the vulnerabilities. Read the advisory at NCCIC/ICS-CERT.