all InfoSec news
SSA-679335 V1.1 (Last Update: 2022-06-14): Multiple Vulnerabilities in Embedded FTP Server of SIMATIC CP Modules
Siemens ProductCERT Security Advisories cert-portal.siemens.com
SIMATIC CP 1543-1 and CP 1545-1 devices are affected by multiple vulnerabilities in ProFTPD, a third party component, that could allow a remote attacker to access sensitive information and execute arbitrary code.
Siemens has released updates for the affected products and recommends to update to the latest versions.
access arbitrary code attacker code devices embedded ftp information modules party products proftpd sensitive sensitive information server siemens simatic ssa third update updates vulnerabilities