Publication Date: | 2021-07-13 |
Last Update: | 2022-06-14 |
Current Version: | V2.0 |
CVSS v3.1 Base Score: | 5.9 |
Affected Product and Versions | Remediation |
---|---|
RUGGEDCOM CROSSBOW Station Access Controller: All versions >= V5.2.0 only when running on ROX V2.14.0 | Update ROX 2 to V2.14.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109800780/ |
RUGGEDCOM RCM1224: All versions >= V6.2 < V7.1 | Update to V7.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109807276 use TLS v1.3 only |
SCALANCE LPE9403 (6GK5998-3GS00-2AC2): All versions < V1.1 | Update to V1.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109805118/ |
SCALANCE M804PB (6GK5804-0AP00-2AA2): All versions >= V6.2 < V7.1 | Update to V7.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109807276 use TLS v1.3 only |
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2): All versions >= V6.2 < V7.1 | Update to V7.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109807276 use TLS v1.3 only |
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2): All versions >= V6.2 < V7.1 | Update to V7.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109807276 use TLS v1.3 only |
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2): All versions >= V6.2 < V7.1 | Update to V7.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109807276 use TLS v1.3 only |
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2): All versions >= V6.2 < V7.1 | Update to V7.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109807276 use TLS v1.3 only |
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2): All versions >= V6.2 < V7.1 | Update to V7.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109807276 use TLS v1.3 only |
SCALANCE M874-2 (6GK5874-2AA00-2AA2): All versions >= V6.2 < V7.1 | Update to V7.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109807276 use TLS v1.3 only |
SCALANCE M874-3 (6GK5874-3AA00-2AA2): All versions >= V6.2 < V7.1 | Update to V7.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109807276 use TLS v1.3 only |
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2): All versions >= V6.2 < V7.1 | Update to V7.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109807276 use TLS v1.3 only |
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2): All versions >= V6.2 < V7.1 | Update to V7.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109807276 use TLS v1.3 only |
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2): All versions >= V6.2 < V7.1 | Update to V7.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109807276 use TLS v1.3 only |
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2): All versions >= V6.2 < V7.1 | Update to V7.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109807276 use TLS v1.3 only |
SCALANCE S602: All versions >= V4.1 |
Currently no fix is planned See recommendations from section Workarounds and Mitigations |
SCALANCE S612: All versions >= V4.1 |
Currently no fix is planned See recommendations from section Workarounds and Mitigations |
SCALANCE S615 (6GK5615-0AA00-2AA2): All versions >= V6.2 <V7.1 | Update to V7.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109807276 use TLS v1.3 only |
SCALANCE S623: All versions >= V4.1 |
Currently no fix is planned See recommendations from section Workarounds and Mitigations |
SCALANCE S627-2M: All versions >= V4.1 |
Currently no fix is planned See recommendations from section Workarounds and Mitigations |
SCALANCE SC622-2C (6GK5622-2GS00-2AC2): All versions >= V2.0 < V2.1.4 | Update to V2.1.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109797244 |
SCALANCE SC632-2C (6GK5632-2GS00-2AC2): All versions >= V2.0 < V2.1.4 | Update to V2.1.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109797244 |
SCALANCE SC636-2C (6GK5636-2GS00-2AC2): All versions >= V2.0 < V2.1.4 | Update to V2.1.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109797244 |
SCALANCE SC642-2C (6GK5642-2GS00-2AC2): All versions >= V2.0 < V2.1.4 | Update to V2.1.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109797244 |
SCALANCE SC646-2C (6GK5646-2GS00-2AC2): All versions >= V2.0 < V2.1.4 | Update to V2.1.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109797244 |
SCALANCE W1748-1 M12 (6GK5748-1GY01-0AA0): All versions >= V2.0 < V3.0 | Update to V3.0 or later version https://support.industry.siemens.com/cs/de/de/view/109808629 |
SCALANCE W1748-1 M12 (6GK5748-1GY01-0TA0): All versions >= V2.0 < V3.0 | Update to V3.0 or later version https://support.industry.siemens.com/cs/de/de/view/109808629 |
SCALANCE W1788-1 M12 (6GK5788-1GY01-0AA0): All versions >= V2.0 < V3.0 | Update to V3.0 or later version https://support.industry.siemens.com/cs/de/de/view/109808629 |
SCALANCE W1788-2 EEC M12 (6GK5788-2GY01-0TA0): All versions >= V2.0 < V3.0 | Update to V3.0 or later version https://support.industry.siemens.com/cs/de/de/view/109808629 |
SCALANCE W1788-2 M12 (6GK5788-2GY01-0AA0): All versions >= V2.0 < V3.0 | Update to V3.0 or later version https://support.industry.siemens.com/cs/de/de/view/109808629 |
SCALANCE W1788-2IA M12 (6GK5788-2HY01-0AA0): All versions >= V2.0 < V3.0 | Update to V3.0 or later version https://support.industry.siemens.com/cs/de/de/view/109808629 |
SCALANCE W-700 IEEE 802.11n family: All versions >= V6.5 |
Currently no fix is planned See recommendations from section Workarounds and Mitigations |
SCALANCE XB-200: All versions < V4.3 | Update to V4.3 or later version https://support.industry.siemens.com/cs/ww/en/view/109799569 |
SCALANCE XC-200: All versions < V4.3 | Update to V4.3 or later version https://support.industry.siemens.com/cs/ww/en/view/109799569 |
SCALANCE XF-200BA: All versions < V4.3 | Update to V4.3 or later version https://support.industry.siemens.com/cs/ww/en/view/109799569 |
SCALANCE XM-400: All versions < V6.4 | Update to V6.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109796319 |
SCALANCE XP-200: All versions < V4.3 | Update to V4.3 or later version https://support.industry.siemens.com/cs/ww/en/view/109799569 |
SCALANCE XR-300WG: All versions < V4.3 | Update to V4.3 or later version https://support.industry.siemens.com/cs/ww/en/view/109799569 |
SCALANCE XR-500 Family: All versions < V6.4 | Update to V6.4 or later version https://support.industry.siemens.com/cs/ww/en/view/109796317 |
SIMATIC Cloud Connect 7 CC712 (6GK1411-1AC00): All versions >= V1.1 < V1.6 | Update to V1.6 or later version https://support.industry.siemens.com/cs/ww/en/view/109803418/ |
SIMATIC Cloud Connect 7 CC716 (6GK1411-5AC00): All versions >= V1.1 < V1.6 | Update to V1.6 or later version https://support.industry.siemens.com/cs/ww/en/view/109803418/ |
SIMATIC CP 1242-7 V2 (incl. SIPLUS variants): All versions >= V3.1 < V3.3 | Update to V3.3 or later version https://support.industry.siemens.com/cs/ww/en/view/109799604 |
SIMATIC CP 1243-1 (incl. SIPLUS variants): All versions >= V3.1 |
Currently no fix is available See recommendations from section Workarounds and Mitigations |
SIMATIC CP 1243-7 LTE EU (6GK7243-7KX30-0XE0): All versions >= V3.1 < V3.3 | Update to V3.3 or later version https://support.industry.siemens.com/cs/ww/en/view/109799584 |
SIMATIC CP 1243-7 LTE US (6GK7243-7SX30-0XE0): All versions >= V3.1 < V3.3 | Update to V3.3 or later version https://support.industry.siemens.com/cs/ww/en/view/109799584 |
SIMATIC CP 1243-8 IRC (6GK7243-8RX30-0XE0): All versions >= V3.1 |
Currently no fix is available See recommendations from section Workarounds and Mitigations |
SIMATIC CP 1542SP-1 IRC (incl. SIPLUS variants): All versions >= 2.1 |
Currently no fix is available See recommendations from section Workarounds and Mitigations |
SIMATIC CP 1543-1 (6GK7543-1AX00-0XE0): All versions >= V2.2 < V3.0 | Update to V3.0 or later version https://support.industry.siemens.com/cs/ww/en/view/109800773 |
SIMATIC CP 1543SP-1 (incl. SIPLUS variants): All versions >= V2.1 |
Currently no fix is available See recommendations from section Workarounds and Mitigations |
SIMATIC CP 1545-1 (6GK7545-1GX00-0XE0): All versions >= V1.0 < V1.1 | Update to V1.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109811116/ |
SIMATIC HMI Comfort Outdoor Panels 7" & 15" (incl. SIPLUS variants): All versions < V17.0 Upd 2 | Update to V17.0 Upd 2 or later version https://support.industry.siemens.com/cs/ww/en/view/109746530/ |
SIMATIC HMI Comfort Panels 4" - 22" (incl. SIPLUS variants): All versions < V17.0 Upd 2 | Update to V17.0 Upd 2 or later version https://support.industry.siemens.com/cs/ww/en/view/109746530/ |
SIMATIC HMI KTP Mobile Panels: All versions < V17.0 Upd 2 | Update to V17.0 Upd 2 or later version https://support.industry.siemens.com/cs/ww/en/view/109746530/ |
SIMATIC Logon: All versions >= V1.6 Upd2 < V1.6 Upd5 | Update to V1.6 Upd5 or later version https://support.industry.siemens.com/cs/ww/en/view/109794407/ Restrict access to Remote Access service, if used, to mitigate this issue. This service is disabled by default. |
SIMATIC MV540 H (6GF3540-0GE10): All versions < V3.1 | Update to V3.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109804366 |
SIMATIC MV540 S (6GF3540-0CD10): All versions < V3.1 | Update to V3.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109804366 |
SIMATIC MV550 H (6GF3550-0GE10): All versions < V3.1 | Update to V3.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109804366 |
SIMATIC MV550 S (6GF3550-0CD10): All versions < V3.1 | Update to V3.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109804366 |
SIMATIC MV560 U (6GF3560-0LE10): All versions < V3.1 | Update to V3.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109804366 |
SIMATIC MV560 X (6GF3560-0HE10): All versions < V3.1 | Update to V3.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109804366 |
SIMATIC PCS 7 TeleControl: All versions < V9.1 | Update to V9.1 or later version https://support.industry.siemens.com/cs/ww/en/view/109805072/ |
SIMATIC PCS neo: All versions < V3.1 | Update to V3.1 or later version To obtain SIMATIC PCS neo V3.1 contact your local support. |
SIMATIC PDM: All versions >= V9.1 Upd 7 < V9.2 SP 1 | Update to V9.2 SP 1 or later version https://support.industry.siemens.com/cs/ww/en/view/109805353/ Restrict access to the command interface, if used, to mitigate this issue. This interface is disabled by default. |
SIMATIC Process Historian OPC UA Server: All versions >= 2019 < 2020 Upd1 | Update SIMATIC PCS neo to V3.1 or later version To obtain SIMATIC PCS neo V3.1 contact your local support. |
SIMATIC RF166C (6GT2002-0EE20): All versions < V2.0 | Update to V2.0 or later version https://support.industry.siemens.com/cs/ww/en/view/109808633 |
SIMATIC RF185C (6GT2002-0JE10): All versions < V2.0 | Update to V2.0 or later version https://support.industry.siemens.com/cs/ww/en/view/109808633 |
SIMATIC RF186C (6GT2002-0JE20): All versions < V2.0 | Update to V2.0 or later version https://support.industry.siemens.com/cs/ww/en/view/109808633 |
SIMATIC RF186CI (6GT2002-0JE50): All versions < V2.0 | Update to V2.0 or later version https://support.industry.siemens.com/cs/ww/en/view/109808633 |
SIMATIC RF188C (6GT2002-0JE40): All versions < V2.0 | Update to V2.0 or later version https://support.industry.siemens.com/cs/ww/en/view/109808633 |
SIMATIC RF188CI (6GT2002-0JE60): All versions < V2.0 | Update to V2.0 or later version https://support.industry.siemens.com/cs/ww/en/view/109808633 |
SIMATIC RF360R (6GT2801-5BA30): All versions < V2.0 | Update to V2.0 or later version https://support.industry.siemens.com/cs/ww/en/view/109808759 |
SIMATIC RF610R (6GT2811-6BC10): All versions < V4.0 | Update to V4.0 or later version https://support.industry.siemens.com/cs/ww/en/view/109808361 |
SIMATIC RF615R (6GT2811-6CC10): All versions < V4.0 | Update to V4.0 or later version https://support.industry.siemens.com/cs/ww/en/view/109808361 |
SIMATIC RF650R (6GT2811-6AB20): All versions < V4.0 | Update to V4.0 or later version https://support.industry.siemens.com/cs/ww/en/view/109808361 |
SIMATIC RF680R (6GT2811-6AA10): All versions < V4.0 | Update to V4.0 or later version https://support.industry.siemens.com/cs/ww/en/view/109808361 |
SIMATIC RF685R (6GT2811-6CA10): All versions < V4.0 | Update to V4.0 or later version https://support.industry.siemens.com/cs/ww/en/view/109808361 |
SIMATIC S7-1200 CPU family (incl. SIPLUS variants): All versions < V4.5.2 | Update to V4.5.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109793280/ |
SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (MLFB: 6ES7518-4AX00-1AC0, 6AG1518-4AX00-4AC0, incl. SIPLUS variant): All versions < V2.9.3 | Update to V2.9.3 or later version https://support.industry.siemens.com/cs/de/en/view/109478459 |
SIMATIC WinCC Runtime Advanced: All versions < V17 Update 1 | Update to V17 Update 1 or later version https://support.industry.siemens.com/cs/ww/en/view/109800912 |
SIMATIC WinCC TeleControl: All versions |
Currently no fix is available See recommendations from section Workarounds and Mitigations |
SINAMICS Connect 300: All versions |
Currently no fix is planned See recommendations from section Workarounds and Mitigations |
SINEC NMS: All versions >= V1.0 SP1 < V1.0 SP2 | Update to V1.0 SP2 https://support.industry.siemens.com/cs/ww/en/view/109797645/ |
SINEMA Server: All versions V14 < V14 SP3 | Update to V14 SP3 or later version https://support.industry.siemens.com/cs/ww/en/view/109801374/ |
SINUMERIK OPC UA Server: All versions < V3.1 SP1 | Update to V3.1 SP1 or later version https://support.industry.siemens.com/cs/ww/en/view/109801292 |
SIPLUS NET CP 1543-1 (6AG1543-1AX00-2XE0): All versions >= V2.2 < V3.0 | Update to V3.0 or later version https://support.industry.siemens.com/cs/ww/en/view/109800773 |
SIPLUS TIM 1531 IRC (6AG1543-1MX00-7XE0): All versions >= V2.0 < V2.2 | Update to V2.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109798331 |
TIA Administrator: All versions < V1.0 SP4 | Update to V1.0 SP4 or later version https://support.industry.siemens.com/cs/de/en/view/114358 |
TIM 1531 IRC (6GK7543-1MX00-0XE0): All versions >= V2.0 < V2.2 | Update to V2.2 or later version https://support.industry.siemens.com/cs/ww/en/view/109798331 |
CVSS v3.1 Base Score | 5.9 |
CVSS Vector | CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C |
CWE: | CWE-476: NULL Pointer Dereference |