VDB
ICSA-18-018-01A
ICSA-18-018-01A
PUBLISHED
CVSS 9.800000190734863 CRITICAL
Risk Scores
CVSS 3.1
9.800000190734863
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| SIMATIC WinCC Add-On PM-OPEN PV02 | ||
| SIMATIC WinCC Add-On SIPAPER IT MIS | ||
| SIMATIC WinCC Add-On SICEMENT IT MIS | ||
| SIMATIC WinCC Add-On PM-CONTROL | ||
| SIMATIC WinCC Add-On PM-OPEN IMPORT | ||
| SIMATIC WinCC Add-On PI CONNECT AUDIT TRAIL | ||
| SIMATIC WinCC Add-On PM-OPEN HOST-S | ||
| SIMATIC WinCC Add-On PM-QUALITY | ||
| SIMATIC WinCC Add-On PI CONNECT ALARM | ||
| SIMATIC WinCC Add-On PM-OPEN PI | ||
| SIMATIC WinCC Add-On PM-ANALYZE | ||
| SIMATIC WinCC Add-On Historian CONNECT ALARM | ||
| SIMATIC WinCC Add-On PM-OPEN EXPORT | ||
| SIMATIC WinCC Add-On PM-OPEN TCP/IP | ||
| SIMATIC WinCC Add-On PM-AGENT | ||
| SIMATIC WinCC Add-On PM-MAINT |
Timeline
- Jan 18, 2018 CVE Published
- Feb 22, 2018 CVE Updated
References
- https://cert-portal.siemens.com/productcert/txt/ssa-127490.txt advisory
- https://raw.githubusercontent.com/cisagov/CSAF/refs/heads/develop/csaf_files/OT/white/2018/icsa-18-018-01A.json advisory
- https://www.cisa.gov/news-events/ics-advisories/icsa-18-018-01A advisory
- https://www.cisa.gov/uscert/ics/alerts/ICS-ALERT-10-301-01 url
- https://www.cisa.gov/resources-tools/resources/ics-recommended-practices url
- https://www.cisa.gov/sites/default/files/publications/Cybersecurity_Best_Practices_for_Industrial_Control_Systems.pdf url
- https://www.cisa.gov/topics/industrial-control-systems url
- https://us-cert.cisa.gov/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf url
- https://www.cisa.gov/uscert/ics/tips/ICS-TIP-12-146-01B url
- https://supportportal.gemalto.com/csm/ fix
- https://www.siemens.com/cert/operational fix