Publication Date: 2021-05-11
Last Update: 2022-06-14
Current Version: V1.8
CVSS v3.1 Base Score: 7.4

Affected Product and Versions Remediation
RUGGEDCOM RM1224 (6GK6108-4AM00):
All versions >= V5.0 and < V6.4
Update to V6.4 or later version
https://support.industry.siemens.com/cs/ww/en/view/109794349/
See further recommendations from section Workarounds and Mitigations
SCALANCE M-800:
All versions >= V5.0 and < V6.4
Update to V6.4 or later version
https://support.industry.siemens.com/cs/ww/en/view/109794349/
See further recommendations from section Workarounds and Mitigations
SCALANCE S615 (6GK5615-0AA00-2AA2):
All versions >= V5.0 and < V6.4
Update to V6.4 or later version
https://support.industry.siemens.com/cs/ww/en/view/109794349/
See further recommendations from section Workarounds and Mitigations
SCALANCE SC-600 family:
All versions < V2.1.3
Update to V2.1.3 or later version
https://support.industry.siemens.com/cs/ww/en/view/109793041/
See further recommendations from section Workarounds and Mitigations
SCALANCE W1750D:
V8.3.0.1, V8.6.0 and V8.7.0
Update to V8.7.1.3 or later version
https://support.industry.siemens.com/cs/de/en/view/109802805/
See further recommendations from section Workarounds and Mitigations
SIMATIC Cloud Connect 7 CC712 (6GK1411-1AC00):
All versions > V1.0 and < V1.6
Update to V1.6 or later version
https://support.industry.siemens.com/cs/ww/en/view/109803418/
See further recommendations from section Workarounds and Mitigations
SIMATIC Cloud Connect 7 CC716 (6GK1411-5AC00):
All versions > V1.0 and < V1.6
Update to V1.6 or later version
https://support.industry.siemens.com/cs/ww/en/view/109803418/
See further recommendations from section Workarounds and Mitigations
SIMATIC CP 1242-7 V2 (incl. SIPLUS variants):
All versions >= V3.1.39 < V3.3
Update to V3.3 or later version
https://support.industry.siemens.com/cs/ww/en/view/109799604/
See further recommendations from section Workarounds and Mitigations
SIMATIC CP 1243-1 (6GK7243-1BX30-0XE0):
All versions >= V3.1.39
Currently no fix is available
See recommendations from section Workarounds and Mitigations
SIMATIC CP 1243-1 (incl. SIPLUS variants):
All versions >= V3.1.39
Currently no fix is available
See recommendations from section Workarounds and Mitigations
SIMATIC CP 1243-7 LTE EU (6GK7243-7KX30-0XE0):
All versions >=V3.1.39 and < V3.3
Update to V3.3 or later version
https://support.industry.siemens.com/cs/ww/en/view/109799584/
See further recommendations from section Workarounds and Mitigations
SIMATIC CP 1243-7 LTE US (6GK7243-7SX30-0XE0):
All versions >=V3.1.39 and < V3.3
Update to V3.3 or later version
https://support.industry.siemens.com/cs/ww/en/view/109799584/
See further recommendations from section Workarounds and Mitigations
SIMATIC CP 1243-8 IRC (6GK7243-8RX30-0XE0):
All versions >= V3.1.39
Currently no fix is available
See recommendations from section Workarounds and Mitigations
SIMATIC CP 1542SP-1 (6GK7542-6UX00-0XE0):
All versions >= V2.0
Currently no fix is available
See recommendations from section Workarounds and Mitigations
SIMATIC CP 1542SP-1 IRC (incl. SIPLUS variants):
All versions >= V2.0
Currently no fix is available
See recommendations from section Workarounds and Mitigations
SIMATIC CP 1543-1 (incl. SIPLUS variants):
All versions >= V2.2 and < V3.0
Update to V3.0 or later version
https://support.industry.siemens.com/cs/ww/en/view/109800773
See further recommendations from section Workarounds and Mitigations
SIMATIC CP 1543SP-1 (6GK7543-6WX00-0XE0):
All versions >= V2.2 and < V3.0
Update to V3.0 or later version
https://support.industry.siemens.com/cs/ww/en/view/109800773
See further recommendations from section Workarounds and Mitigations
SIMATIC CP 1543SP-1 (incl. SIPLUS variants):
All versions >= V2.0
Currently no fix is available
See recommendations from section Workarounds and Mitigations
SIMATIC CP 1545-1 (6GK7545-1GX00-0XE0):
All versions < V1.1
Update to V1.1 or later version
https://support.industry.siemens.com/cs/ww/en/view/109811116/
See further recommendations from section Workarounds and Mitigations
SIMATIC MV540 H (6GF3540-0GE10):
All versions < V3.1
Update to V3.1 or later version
https://support.industry.siemens.com/cs/de/en/view/109804366
See further recommendations from section Workarounds and Mitigations
SIMATIC MV540 S (6GF3540-0CD10):
All versions < V3.1
Update to V3.1 or later version
https://support.industry.siemens.com/cs/de/en/view/109804366
See further recommendations from section Workarounds and Mitigations
SIMATIC MV550 H (6GF3550-0GE10):
All versions < V3.1
Update to V3.1 or later version
https://support.industry.siemens.com/cs/de/en/view/109804366
See further recommendations from section Workarounds and Mitigations
SIMATIC MV550 S (6GF3550-0CD10):
All versions < V3.1
Update to V3.1 or later version
https://support.industry.siemens.com/cs/de/en/view/109804366
See further recommendations from section Workarounds and Mitigations
SIMATIC MV560 U (6GF3560-0LE10):
All versions < V3.1
Update to V3.1 or later version
https://support.industry.siemens.com/cs/de/en/view/109804366
See further recommendations from section Workarounds and Mitigations
SIMATIC MV560 X (6GF3560-0HE10):
All versions < V3.1
Update to V3.1 or later version
https://support.industry.siemens.com/cs/de/en/view/109804366
See further recommendations from section Workarounds and Mitigations
SINEMA Remote Connect Server:
All versions < V3.0 SP1
Update to V3.0 SP1 or later version
https://support.industry.siemens.com/cs/ww/en/view/109793790/
See further recommendations from section Workarounds and Mitigations
SIPLUS TIM 1531 IRC (6AG1543-1MX00-7XE0):
All versions < V2.2 Update 1
Update to V2.2 Update 1 or later version
https://support.industry.siemens.com/cs/de/en/view/109803672/
See further recommendations from section Workarounds and Mitigations
TIM 1531 IRC (6GK7543-1MX00-0XE0):
All versions < V2.2 Update 1
Update to V2.2 Update 1 or later version
https://support.industry.siemens.com/cs/de/en/view/109803672/
See further recommendations from section Workarounds and Mitigations

CVSS v3.1 Base Score 7.4
CVSS Vector CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N/E:U/RL:O/RC:C
CWE: CWE-330: Use of Insufficiently Random Values

https://www.siemens.com/cert/advisories