Publication Date: | 2020-04-14 |
Last Update: | 2022-05-10 |
Current Version: | V1.3 |
CVSS v3.1 Base Score: | 7.1 |
Affected Product and Versions | Remediation |
---|---|
APOGEE MEC/MBC/PXC (P2):
All versions < V2.8.2 |
Currently no fix is planned Use static IP address configuration See further recommendations from section Workarounds and Mitigations |
APOGEE PXC Series (BACnet):
All versions < V3.5.3 |
Update to V3.5.3 or later version
See further recommendations from section Workarounds and Mitigations |
APOGEE PXC Series (P2):
All versions >= V2.8.2 and < V2.8.19 |
Update to V2.8.19 or later version
See further recommendations from section Workarounds and Mitigations |
Desigo PXC00-E.D:
All versions >= V2.3x and < V6.00.327 |
Update to V6.00.327 or later version
https://support.industry.siemens.com/cs/ww/en/view/109791941/ See further recommendations from section Workarounds and Mitigations |
Desigo PXC00-U:
All versions >= V2.3x and < V6.00.327 |
Update to V6.00.327 or later version
https://support.industry.siemens.com/cs/ww/en/view/109791941/ See further recommendations from section Workarounds and Mitigations |
Desigo PXC001-E.D:
All versions >= V2.3x and < V6.00.327 |
Update to V6.00.327 or later version
https://support.industry.siemens.com/cs/ww/en/view/109791941/ See further recommendations from section Workarounds and Mitigations |
Desigo PXC12-E.D:
All versions >= V2.3x and < V6.00.327 |
Update to V6.00.327 or later version
https://support.industry.siemens.com/cs/ww/en/view/109791941/ See further recommendations from section Workarounds and Mitigations |
Desigo PXC22-E.D:
All versions >= V2.3x and < V6.00.327 |
Update to V6.00.327 or later version
https://support.industry.siemens.com/cs/ww/en/view/109791941/ See further recommendations from section Workarounds and Mitigations |
Desigo PXC22.1-E.D:
All versions >= V2.3x and < V6.00.327 |
Update to V6.00.327 or later version
https://support.industry.siemens.com/cs/ww/en/view/109791941/ See further recommendations from section Workarounds and Mitigations |
Desigo PXC36.1-E.D:
All versions >= V2.3x and < V6.00.327 |
Update to V6.00.327 or later version
https://support.industry.siemens.com/cs/ww/en/view/109791941/ See further recommendations from section Workarounds and Mitigations |
Desigo PXC50-E.D:
All versions >= V2.3x and < V6.00.327 |
Update to V6.00.327 or later version
https://support.industry.siemens.com/cs/ww/en/view/109791941/ See further recommendations from section Workarounds and Mitigations |
Desigo PXC64-U:
All versions >= V2.3x and < V6.00.327 |
Update to V6.00.327 or later version
https://support.industry.siemens.com/cs/ww/en/view/109791941/ See further recommendations from section Workarounds and Mitigations |
Desigo PXC100-E.D:
All versions >= V2.3x and < V6.00.327 |
Update to V6.00.327 or later version
https://support.industry.siemens.com/cs/ww/en/view/109791941/ See further recommendations from section Workarounds and Mitigations |
Desigo PXC128-U:
All versions >= V2.3x and < V6.00.327 |
Update to V6.00.327 or later version
https://support.industry.siemens.com/cs/ww/en/view/109791941/ See further recommendations from section Workarounds and Mitigations |
Desigo PXC200-E.D:
All versions >= V2.3x and < V6.00.327 |
Update to V6.00.327 or later version
https://support.industry.siemens.com/cs/ww/en/view/109791941/ See further recommendations from section Workarounds and Mitigations |
Desigo PXM20-E:
All versions >= V2.3x and < V6.00.327 |
Update to V6.00.327 or later version
https://support.industry.siemens.com/cs/ww/en/view/109791941/ See further recommendations from section Workarounds and Mitigations |
SIMOTICS CONNECT 400:
All versions < V0.3.0.330 |
Update to V0.3.0.330 or later version
https://support.industry.siemens.com/cs/ww/en/view/109778383/ See further recommendations from section Workarounds and Mitigations |
TALON TC Series (BACnet):
All versions < V3.5.3 |
Update to V3.5.3 or later version
See further recommendations from section Workarounds and Mitigations |
CVSS v3.1 Base Score | 7.1 |
CVSS Vector | CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H/E:P/RL:O/RC:C |
CWE: | CWE-840: Business Logic Errors |