Publication Date: 2021-07-13
Last Update: 2022-06-14
Current Version: V2.0
CVSS v3.1 Base Score: 5.9

Affected Product and Versions Remediation
RUGGEDCOM CROSSBOW Station Access Controller:
All versions >= V5.2.0 only when running on ROX V2.14.0
Update ROX 2 to V2.14.1 or later version
https://support.industry.siemens.com/cs/ww/en/view/109800780/
RUGGEDCOM RCM1224:
All versions >= V6.2 < V7.1
Update to V7.1 or later version
https://support.industry.siemens.com/cs/ww/en/view/109807276

use TLS v1.3 only
SCALANCE LPE9403 (6GK5998-3GS00-2AC2):
All versions < V1.1
Update to V1.1 or later version
https://support.industry.siemens.com/cs/ww/en/view/109805118/
SCALANCE M804PB (6GK5804-0AP00-2AA2):
All versions >= V6.2 < V7.1
Update to V7.1 or later version
https://support.industry.siemens.com/cs/ww/en/view/109807276

use TLS v1.3 only
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2):
All versions >= V6.2 < V7.1
Update to V7.1 or later version
https://support.industry.siemens.com/cs/ww/en/view/109807276

use TLS v1.3 only
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2):
All versions >= V6.2 < V7.1
Update to V7.1 or later version
https://support.industry.siemens.com/cs/ww/en/view/109807276

use TLS v1.3 only
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2):
All versions >= V6.2 < V7.1
Update to V7.1 or later version
https://support.industry.siemens.com/cs/ww/en/view/109807276

use TLS v1.3 only
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2):
All versions >= V6.2 < V7.1
Update to V7.1 or later version
https://support.industry.siemens.com/cs/ww/en/view/109807276

use TLS v1.3 only
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2):
All versions >= V6.2 < V7.1
Update to V7.1 or later version
https://support.industry.siemens.com/cs/ww/en/view/109807276

use TLS v1.3 only
SCALANCE M874-2 (6GK5874-2AA00-2AA2):
All versions >= V6.2 < V7.1
Update to V7.1 or later version
https://support.industry.siemens.com/cs/ww/en/view/109807276

use TLS v1.3 only
SCALANCE M874-3 (6GK5874-3AA00-2AA2):
All versions >= V6.2 < V7.1
Update to V7.1 or later version
https://support.industry.siemens.com/cs/ww/en/view/109807276

use TLS v1.3 only
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2):
All versions >= V6.2 < V7.1
Update to V7.1 or later version
https://support.industry.siemens.com/cs/ww/en/view/109807276

use TLS v1.3 only
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2):
All versions >= V6.2 < V7.1
Update to V7.1 or later version
https://support.industry.siemens.com/cs/ww/en/view/109807276

use TLS v1.3 only
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2):
All versions >= V6.2 < V7.1
Update to V7.1 or later version
https://support.industry.siemens.com/cs/ww/en/view/109807276

use TLS v1.3 only
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2):
All versions >= V6.2 < V7.1
Update to V7.1 or later version
https://support.industry.siemens.com/cs/ww/en/view/109807276

use TLS v1.3 only
SCALANCE S602:
All versions >= V4.1
Currently no fix is planned
See recommendations from section Workarounds and Mitigations
SCALANCE S612:
All versions >= V4.1
Currently no fix is planned
See recommendations from section Workarounds and Mitigations
SCALANCE S615 (6GK5615-0AA00-2AA2):
All versions >= V6.2 <V7.1
Update to V7.1 or later version
https://support.industry.siemens.com/cs/ww/en/view/109807276

use TLS v1.3 only
SCALANCE S623:
All versions >= V4.1
Currently no fix is planned
See recommendations from section Workarounds and Mitigations
SCALANCE S627-2M:
All versions >= V4.1
Currently no fix is planned
See recommendations from section Workarounds and Mitigations
SCALANCE SC622-2C (6GK5622-2GS00-2AC2):
All versions >= V2.0 < V2.1.4
Update to V2.1.4 or later version
https://support.industry.siemens.com/cs/ww/en/view/109797244
SCALANCE SC632-2C (6GK5632-2GS00-2AC2):
All versions >= V2.0 < V2.1.4
Update to V2.1.4 or later version
https://support.industry.siemens.com/cs/ww/en/view/109797244
SCALANCE SC636-2C (6GK5636-2GS00-2AC2):
All versions >= V2.0 < V2.1.4
Update to V2.1.4 or later version
https://support.industry.siemens.com/cs/ww/en/view/109797244
SCALANCE SC642-2C (6GK5642-2GS00-2AC2):
All versions >= V2.0 < V2.1.4
Update to V2.1.4 or later version
https://support.industry.siemens.com/cs/ww/en/view/109797244
SCALANCE SC646-2C (6GK5646-2GS00-2AC2):
All versions >= V2.0 < V2.1.4
Update to V2.1.4 or later version
https://support.industry.siemens.com/cs/ww/en/view/109797244
SCALANCE W1748-1 M12 (6GK5748-1GY01-0AA0):
All versions >= V2.0 < V3.0
Update to V3.0 or later version
https://support.industry.siemens.com/cs/de/de/view/109808629
SCALANCE W1748-1 M12 (6GK5748-1GY01-0TA0):
All versions >= V2.0 < V3.0
Update to V3.0 or later version
https://support.industry.siemens.com/cs/de/de/view/109808629
SCALANCE W1788-1 M12 (6GK5788-1GY01-0AA0):
All versions >= V2.0 < V3.0
Update to V3.0 or later version
https://support.industry.siemens.com/cs/de/de/view/109808629
SCALANCE W1788-2 EEC M12 (6GK5788-2GY01-0TA0):
All versions >= V2.0 < V3.0
Update to V3.0 or later version
https://support.industry.siemens.com/cs/de/de/view/109808629
SCALANCE W1788-2 M12 (6GK5788-2GY01-0AA0):
All versions >= V2.0 < V3.0
Update to V3.0 or later version
https://support.industry.siemens.com/cs/de/de/view/109808629
SCALANCE W1788-2IA M12 (6GK5788-2HY01-0AA0):
All versions >= V2.0 < V3.0
Update to V3.0 or later version
https://support.industry.siemens.com/cs/de/de/view/109808629
SCALANCE W-700 IEEE 802.11n family:
All versions >= V6.5
Currently no fix is planned
See recommendations from section Workarounds and Mitigations
SCALANCE XB-200:
All versions < V4.3
Update to V4.3 or later version
https://support.industry.siemens.com/cs/ww/en/view/109799569
SCALANCE XC-200:
All versions < V4.3
Update to V4.3 or later version
https://support.industry.siemens.com/cs/ww/en/view/109799569
SCALANCE XF-200BA:
All versions < V4.3
Update to V4.3 or later version
https://support.industry.siemens.com/cs/ww/en/view/109799569
SCALANCE XM-400:
All versions < V6.4
Update to V6.4 or later version
https://support.industry.siemens.com/cs/ww/en/view/109796319
SCALANCE XP-200:
All versions < V4.3
Update to V4.3 or later version
https://support.industry.siemens.com/cs/ww/en/view/109799569
SCALANCE XR-300WG:
All versions < V4.3
Update to V4.3 or later version
https://support.industry.siemens.com/cs/ww/en/view/109799569
SCALANCE XR-500 Family:
All versions < V6.4
Update to V6.4 or later version
https://support.industry.siemens.com/cs/ww/en/view/109796317
SIMATIC Cloud Connect 7 CC712 (6GK1411-1AC00):
All versions >= V1.1 < V1.6
Update to V1.6 or later version
https://support.industry.siemens.com/cs/ww/en/view/109803418/
SIMATIC Cloud Connect 7 CC716 (6GK1411-5AC00):
All versions >= V1.1 < V1.6
Update to V1.6 or later version
https://support.industry.siemens.com/cs/ww/en/view/109803418/
SIMATIC CP 1242-7 V2 (incl. SIPLUS variants):
All versions >= V3.1 < V3.3
Update to V3.3 or later version
https://support.industry.siemens.com/cs/ww/en/view/109799604
SIMATIC CP 1243-1 (incl. SIPLUS variants):
All versions >= V3.1
Currently no fix is available
See recommendations from section Workarounds and Mitigations
SIMATIC CP 1243-7 LTE EU (6GK7243-7KX30-0XE0):
All versions >= V3.1 < V3.3
Update to V3.3 or later version
https://support.industry.siemens.com/cs/ww/en/view/109799584
SIMATIC CP 1243-7 LTE US (6GK7243-7SX30-0XE0):
All versions >= V3.1 < V3.3
Update to V3.3 or later version
https://support.industry.siemens.com/cs/ww/en/view/109799584
SIMATIC CP 1243-8 IRC (6GK7243-8RX30-0XE0):
All versions >= V3.1
Currently no fix is available
See recommendations from section Workarounds and Mitigations
SIMATIC CP 1542SP-1 IRC (incl. SIPLUS variants):
All versions >= 2.1
Currently no fix is available
See recommendations from section Workarounds and Mitigations
SIMATIC CP 1543-1 (6GK7543-1AX00-0XE0):
All versions >= V2.2 < V3.0
Update to V3.0 or later version
https://support.industry.siemens.com/cs/ww/en/view/109800773
SIMATIC CP 1543SP-1 (incl. SIPLUS variants):
All versions >= V2.1
Currently no fix is available
See recommendations from section Workarounds and Mitigations
SIMATIC CP 1545-1 (6GK7545-1GX00-0XE0):
All versions >= V1.0 < V1.1
Update to V1.1 or later version
https://support.industry.siemens.com/cs/ww/en/view/109811116/
SIMATIC HMI Comfort Outdoor Panels 7" & 15" (incl. SIPLUS variants):
All versions < V17.0 Upd 2
Update to V17.0 Upd 2 or later version
https://support.industry.siemens.com/cs/ww/en/view/109746530/
SIMATIC HMI Comfort Panels 4" - 22" (incl. SIPLUS variants):
All versions < V17.0 Upd 2
Update to V17.0 Upd 2 or later version
https://support.industry.siemens.com/cs/ww/en/view/109746530/
SIMATIC HMI KTP Mobile Panels:
All versions < V17.0 Upd 2
Update to V17.0 Upd 2 or later version
https://support.industry.siemens.com/cs/ww/en/view/109746530/
SIMATIC Logon:
All versions >= V1.6 Upd2 < V1.6 Upd5
Update to V1.6 Upd5 or later version
https://support.industry.siemens.com/cs/ww/en/view/109794407/

Restrict access to Remote Access service, if used, to mitigate this issue. This service is disabled by default.
SIMATIC MV540 H (6GF3540-0GE10):
All versions < V3.1
Update to V3.1 or later version
https://support.industry.siemens.com/cs/ww/en/view/109804366
SIMATIC MV540 S (6GF3540-0CD10):
All versions < V3.1
Update to V3.1 or later version
https://support.industry.siemens.com/cs/ww/en/view/109804366
SIMATIC MV550 H (6GF3550-0GE10):
All versions < V3.1
Update to V3.1 or later version
https://support.industry.siemens.com/cs/ww/en/view/109804366
SIMATIC MV550 S (6GF3550-0CD10):
All versions < V3.1
Update to V3.1 or later version
https://support.industry.siemens.com/cs/ww/en/view/109804366
SIMATIC MV560 U (6GF3560-0LE10):
All versions < V3.1
Update to V3.1 or later version
https://support.industry.siemens.com/cs/ww/en/view/109804366
SIMATIC MV560 X (6GF3560-0HE10):
All versions < V3.1
Update to V3.1 or later version
https://support.industry.siemens.com/cs/ww/en/view/109804366
SIMATIC PCS 7 TeleControl:
All versions < V9.1
Update to V9.1 or later version
https://support.industry.siemens.com/cs/ww/en/view/109805072/
SIMATIC PCS neo:
All versions < V3.1
Update to V3.1 or later version
To obtain SIMATIC PCS neo V3.1 contact your local support.
SIMATIC PDM:
All versions >= V9.1 Upd 7 < V9.2 SP 1
Update to V9.2 SP 1 or later version
https://support.industry.siemens.com/cs/ww/en/view/109805353/

Restrict access to the command interface, if used, to mitigate this issue. This interface is disabled by default.
SIMATIC Process Historian OPC UA Server:
All versions >= 2019 < 2020 Upd1
Update SIMATIC PCS neo to V3.1 or later version
To obtain SIMATIC PCS neo V3.1 contact your local support.
SIMATIC RF166C (6GT2002-0EE20):
All versions < V2.0
Update to V2.0 or later version
https://support.industry.siemens.com/cs/ww/en/view/109808633
SIMATIC RF185C (6GT2002-0JE10):
All versions < V2.0
Update to V2.0 or later version
https://support.industry.siemens.com/cs/ww/en/view/109808633
SIMATIC RF186C (6GT2002-0JE20):
All versions < V2.0
Update to V2.0 or later version
https://support.industry.siemens.com/cs/ww/en/view/109808633
SIMATIC RF186CI (6GT2002-0JE50):
All versions < V2.0
Update to V2.0 or later version
https://support.industry.siemens.com/cs/ww/en/view/109808633
SIMATIC RF188C (6GT2002-0JE40):
All versions < V2.0
Update to V2.0 or later version
https://support.industry.siemens.com/cs/ww/en/view/109808633
SIMATIC RF188CI (6GT2002-0JE60):
All versions < V2.0
Update to V2.0 or later version
https://support.industry.siemens.com/cs/ww/en/view/109808633
SIMATIC RF360R (6GT2801-5BA30):
All versions < V2.0
Update to V2.0 or later version
https://support.industry.siemens.com/cs/ww/en/view/109808759
SIMATIC RF610R (6GT2811-6BC10):
All versions < V4.0
Update to V4.0 or later version
https://support.industry.siemens.com/cs/ww/en/view/109808361
SIMATIC RF615R (6GT2811-6CC10):
All versions < V4.0
Update to V4.0 or later version
https://support.industry.siemens.com/cs/ww/en/view/109808361
SIMATIC RF650R (6GT2811-6AB20):
All versions < V4.0
Update to V4.0 or later version
https://support.industry.siemens.com/cs/ww/en/view/109808361
SIMATIC RF680R (6GT2811-6AA10):
All versions < V4.0
Update to V4.0 or later version
https://support.industry.siemens.com/cs/ww/en/view/109808361
SIMATIC RF685R (6GT2811-6CA10):
All versions < V4.0
Update to V4.0 or later version
https://support.industry.siemens.com/cs/ww/en/view/109808361
SIMATIC S7-1200 CPU family (incl. SIPLUS variants):
All versions < V4.5.2
Update to V4.5.2 or later version
https://support.industry.siemens.com/cs/ww/en/view/109793280/
SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (MLFB: 6ES7518-4AX00-1AC0, 6AG1518-4AX00-4AC0, incl. SIPLUS variant):
All versions < V2.9.3
Update to V2.9.3 or later version
https://support.industry.siemens.com/cs/de/en/view/109478459
SIMATIC WinCC Runtime Advanced:
All versions < V17 Update 1
Update to V17 Update 1 or later version
https://support.industry.siemens.com/cs/ww/en/view/109800912
SIMATIC WinCC TeleControl:
All versions
Currently no fix is available
See recommendations from section Workarounds and Mitigations
SINAMICS Connect 300:
All versions
Currently no fix is planned
See recommendations from section Workarounds and Mitigations
SINEC NMS:
All versions >= V1.0 SP1 < V1.0 SP2
Update to V1.0 SP2
https://support.industry.siemens.com/cs/ww/en/view/109797645/
SINEMA Server:
All versions V14 < V14 SP3
Update to V14 SP3 or later version
https://support.industry.siemens.com/cs/ww/en/view/109801374/
SINUMERIK OPC UA Server:
All versions < V3.1 SP1
Update to V3.1 SP1 or later version
https://support.industry.siemens.com/cs/ww/en/view/109801292
SIPLUS NET CP 1543-1 (6AG1543-1AX00-2XE0):
All versions >= V2.2 < V3.0
Update to V3.0 or later version
https://support.industry.siemens.com/cs/ww/en/view/109800773
SIPLUS TIM 1531 IRC (6AG1543-1MX00-7XE0):
All versions >= V2.0 < V2.2
Update to V2.2 or later version
https://support.industry.siemens.com/cs/ww/en/view/109798331
TIA Administrator:
All versions < V1.0 SP4
Update to V1.0 SP4 or later version
https://support.industry.siemens.com/cs/de/en/view/114358
TIM 1531 IRC (6GK7543-1MX00-0XE0):
All versions >= V2.0 < V2.2
Update to V2.2 or later version
https://support.industry.siemens.com/cs/ww/en/view/109798331

CVSS v3.1 Base Score 5.9
CVSS Vector CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C
CWE: CWE-476: NULL Pointer Dereference

https://www.siemens.com/cert/advisories