all InfoSec news
SSA-603476 V1.4 (Last Update: 2023-04-11): Web Vulnerabilities in SIMATIC NET CP 343-1/CP 443-1 Modules and SIMATIC S7-300/S7-400 CPUs
Siemens ProductCERT Security Advisories cert-portal.siemens.com
SIMATIC CP 343-1 Advanced/CP-443-1 Advanced devices and SIMATIC S7-300/S7-400 CPUs are affected by two vulnerabilities. One of the vulnerabilities could allow remote attackers to perform operations as an authenticated user under certain conditions.
Siemens has released updates for several affected products and recommends to update to the latest versions. Siemens recommends specific countermeasures for products where updates are not, or not yet available.
advanced attackers conditions countermeasures cpus devices latest modules operations products siemens simatic ssa under update updates vulnerabilities web web vulnerabilities