all InfoSec news
SSA-661034 V1.2 (Last Update: 2022-08-09): Incorrect Permission Assignment in Multiple SIMATIC Software Products
Siemens ProductCERT Security Advisories cert-portal.siemens.com
Multiple SIMATIC software products are affected by a vulnerability that could allow an attacker to change the content of certain metafiles and subsequently manipulate parameters or behaviour of devices configured by the affected software products.
Siemens has released updates for several affected products and recommends to update to the latest versions. Siemens is preparing further updates and recommends specific countermeasures for products where updates are not, or not yet available.
attacker change devices permission products siemens simatic software software products ssa update updates vulnerability