Siemens TIM 3V-IE and 4R-IE Family Devices (ICSA-20-105-09) – Products Used in the Water and Wastewater and Energy Sectors

CISA has published an advisory on an active debug code vulnerability in Siemens TIM 3V-IE and 4R-IE Family Devices. Numerous products and versions of these products are affected. Successful exploitation of this vulnerability could allow an unauthenticated attacker with network access to gain full control over the device. Siemens has released updates for the affected products and recommends users update to the new version. CISA also recommends a series of measures to mitigate the vulnerability. Read the advisory at CISA.