Siemens Industrial Products (Update J) (ICSA-19-253-03) – Products Used in the Water and Wastewater and Energy Sectors

October 13, 2020

CISA has updated this advisory with additional details on the affected products. Read the advisory at CISA.

September 8, 2020

CISA has updated this advisory with additional details on the affected products and mitigation measures. Read the advisory at CISA.

August 11, 2020

CISA has updated this advisory with additional details on mitigation measures. Read the advisory at CISA.

June 9, 2020

CISA has updated this advisory with additional details on the vulnerabilities, affected products, and mitigation measures. Read the advisory at CISA.

April 14, 2020

CISA has updated this advisory with additional details on the affected measures and mitigation measures. Read the advisory at CISA.

February 11, 2020

CISA has updated this advisory with additional details on the affected measures and mitigation measures. Read the advisory at CISA.

December 10, 2019

CISA has updated this advisory with additional details on the affected measures and mitigation measures. Read the advisory at CISA.

November 14, 2019

CISA has updated this advisory with additional technical details about the affected products and mitigation measures. Read the advisory at CISA.

October 8, 2019

CISA has updated this advisory with additional information on affected products and mitigation measures. Read the advisory at CISA.

September 10, 2019

The NCCIC has published an advisory on integer overflow or wraparound and uncontrolled resource consumption vulnerabilities in Siemens Industrial Products. Multiple products and versions of the products are affected. Successful exploitation of these vulnerabilities could cause denial-of-service condition. Siemens recommends users follow specific workarounds and mitigations. The NCCIC also recommends a series of measures to mitigate the vulnerabilities. Read the advisory at CISA.