Publication Date:
Last Update:
Current Version: V2.4
CVSS v3.1 Base Score: 7.5
Affected Product and Versions Remediation

All versions

Migrate to a successor product within the SIMATIC RF18xC/CI family, V1.3 (see https://support.industry.siemens.com/cs/ww/en/view/109781665) or later version. For details refer to the phase-out announcement at https://support.industry.siemens.com/cs/ww/en/view/109783832

All versions

All versions

All versions

All versions

All versions

All versions

All versions < V2.7

All versions < V2.1.6

All versions < V15.1 Upd 4

All versions < V15.1 Upd 4

All versions < V15.1 Upd 4

All versions < V5.1.3

All versions

Migrate to a successor product within the SIMATIC RF18xC/CI family, V1.3 (see https://support.industry.siemens.com/cs/ww/en/view/109781665) or later version. For details refer to the phase-out announcement at https://support.industry.siemens.com/cs/ww/en/view/109783832

All versions < V1.1.0

All versions < V1.1.0

All versions < V1.1.0

All versions < V3.2.1

All versions < V3.X.16

All versions

All versions

All versions < V2.6.1

All versions < V2.7

All versions < V2.0 SP1 UPD1

All versions

Migrate to a successor product within the SCALANCE M-800 family. For details refer to the notice of discontinuation at https://support.industry.siemens.com/cs/ww/en/view/109781070

All versions

Migrate to a successor product within the SCALANCE M-800 family. For details refer to the notice of discontinuation at https://support.industry.siemens.com/cs/ww/en/view/109781070

All versions

Migrate to a successor product within the SCALANCE M-800 family. For details refer to the notice of discontinuation at https://support.industry.siemens.com/cs/ww/en/view/109781070

All versions < SIMATIC WinAC RTX 2010 SP3
Update to SIMATIC WinAC RTX 2010 SP3 and apply BIOS and Microsoft Windows updates

All versions < V15.1 Upd 4

All versions < V1.1.3

All versions < V2.1.3

All versions

All versions

All versions

All versions < V4.8 HF6

All versions
Update to V5.1 SP1 HF4 or later version, or to latest version of V5.2

All versions < V5.1 SP1 HF4
Update to V5.1 SP1 HF4 or later version

All versions

All versions

All versions

All versions < V4.8 HF6

All versions
Update to V5.1 SP1 HF4 or later version, or to latest version of V5.2

All versions < V5.1 SP1 HF4
Update to V5.1 SP1 HF4 or later version

All versions

All versions

All versions

All versions < V4.8 HF6

All versions
Update to V5.1 SP1 HF4 or later version, or to latest version of V5.2

All versions < V5.1 SP1 HF4
Update to V5.1 SP1 HF4 or later version

All versions

All versions

All versions

All versions < V4.8 HF6

All versions
Update to V5.1 SP1 HF4 or later version, or to latest version of V5.2

All versions < V5.1 SP1 HF4
Update to V5.1 SP1 HF4 or later version

All versions

All versions

All versions

All versions

All versions

All versions < V1.1

All versions < V1.5

All versions < V2.3

All versions < V2.1
  • Restrict network access to the integrated webserver
  • Deactivate the webserver if not required, and if deactivation is supported by the product

As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download: https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.

Additional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity

The vulnerability classification has been performed by using the CVSS scoring system in version 3.1 (CVSS v3.1) (https://www.first.org/cvss/). The CVSS environmental score is specific to the customer’s environment and will impact the overall CVSS score. The environmental score should therefore be individually defined by the customer to accomplish final scoring.

An additional classification has been performed using the CWE classification, a community-developed list of common software security weaknesses. This serves as a common language and as a baseline for weakness identification, mitigation, and prevention efforts. A detailed list of CWE classes can be found at: https://cwe.mitre.org/.

CVSS v3.1 Base Score 7.5
CVSS Vector CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C
CWE CWE-125: Out-of-bounds Read

  • Artem Zinenko from Kaspersky for pointing out that SIPLUS should also be mentioned

https://www.siemens.com/cert/advisories

V1.0 (2019-04-09): Publication Date
V1.1 (2019-05-14): Specification for SINAMICS products, added solution for SIMATIC S7-1500 CPU family and SIMATIC S7-PLCSIM Advanced
V1.2 (2019-06-11): Added update for SIMATIC Software Controller and SIMATIC ET 200 SP Open Controller CPU 1515SP PC2
V1.3 (2019-07-09): Added update for SIMATIC RF600 family, SIMATIC RF185C, SIMATIC RF186C, and SIMATIC RF188C
V1.4 (2019-10-08): Renamed SIMATIC WinAC RTX 2010 to SIMATIC WinAC RTX (F) 2010 and added update for SIMATIC WinAC RTX (F) 2010
V1.5 (2020-01-14): Added update for WinCC Runtime Advanced, SITOP Manager, SITOP UPS1600, and SIMATIC HMI Panels. SIPLUS devices now explicitly mentioned in the list of affected products
V1.6 (2020-02-11): Added update for SITOP PSU8600, TIM 1531 IRC
V1.7 (2020-03-10): Added update for SIMATIC IPC DiagMonitor
V1.8 (2020-06-09): Added update for SIMOCODE pro V PN; clarified update version information for SINAMICS G130/G150/S150 and SINAMICS S120
V1.9 (2020-08-11): Added update for SIMOCODE pro V EIP; informed about successor product for SIMATIC Teleservice adapters
V2.0 (2020-09-08): Informed about successor products for SIMATIC RF182C and RFID 181EIP
V2.1 (2020-12-08): Updated information regarding successor products for SIMATIC RF182C and RFID 181EIP
V2.2 (2022-02-08): No remediation planned for SIMATIC CP 343-1 Advanced, SIMATIC CP 443-1 OPC UA, SIMATIC CP 1604, SIMATIC CP 1616, and SIPLUS NET CP 343-1 Advanced
V2.3 (2022-06-14): No fix planned for SIMATIC CP 443-1 Advanced and SIPLUS NET CP 443-1 Advanced
V2.4 (2022-08-09): No fix planned for SIMATIC S7-400 PN/DP V6 and below CPU family; consolidated mitigation measures