https://cert-portal.siemens.com/productcert/rss/alerts_healthcare_products.atomSiemens ProductCERT Security Alerts and News2019-10-15T00:00:00+00:0010dated>
Siemens ProductCERTproductcert@siemens.comSiemens ProductCERTSiemens Security Alerts and Newshttps://www.siemens.com/cert#Newsroom-2Cyber Security topics @ Siemens Healthineers2019-10-15T00:00:00+00:00Starting by October 15 all topics related to the Siemens Healthineers Cyber Security (including security advisories) will be published at the Siemens Healthineers Cyber Security <a href='https://www.siemens-healthineers.com/support-documentation/cybersecurity/index.html#Security_publications' target='_blank'>webpage</a>.<br/><br/>Should you have further questions regarding this announcement, please use the contact form at the Siemens Healthineers Cyber Security <a href='https://www.siemens-healthineers.com/how-can-we-help-you/index.html' target='_blank'>webpage</a>.https://www.siemens.com/cert#Newsroom-1DejaBlue Vulnerabilities - Siemens Healthineers Products2019-09-10T00:00:00+00:00Siemens Healthineers is aware of the reports about the vulnerabilities reported by Microsoft on August 13th, known as DejaBlue or CVE-2019-1181/1182. Microsoft released updates for Windows 7 SP1, Windows Server 2008 R2 SP1, Windows Server 2012, Windows 8.1, Windows Server 2012 R2, and all supported versions of Windows 10, including server versions on 2019-08-13, which fix a vulnerability in the Remote Desktop Service. The vulnerability could allow an unauthenticated remote attacker to execute arbitrary code on the target system if the system exposes the service to the network.<br/><br/>All Siemens Healthineers products from all business lines have been evaluated. Most Siemens Healthineers products are not affected by the vulnerabilities because they do not provide the option to activate the Remote Desktop Service, implement other controls that mitigate the vulnerabilities, use a version of Microsoft Windows that is not affected, or are not based on Microsoft Windows. This advisory (<a href='https://cert-portal.siemens.com/productcert/pdf/ssa-187667.pdf'>https://cert-portal.siemens.com/productcert/pdf/ssa-187667.pdf</a>) provides a full list of affected products from Siemens Healthineers and provides recommendations to mitigate the vulnerabilities.