VDB
ICSA-24-046-15
ICSA-24-046-15
PUBLISHED
CVSS 4.900000095367432 MEDIUM
SINEC NMS before V2.0 SP1 is affected by multiple vulnerabilities. Siemens has released an update for SINEC NMS and recommends to update to the latest version.
Risk Scores
CVSS v3.1
4.900000095367432
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| SINEC NMS |
Timeline
- Feb 13, 2024 CVE Published
- Mar 12, 2024 CVE Updated
References
- https://cert-portal.siemens.com/productcert/csaf/ssa-943925.json advisory
- https://cert-portal.siemens.com/productcert/html/ssa-943925.html advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-943925.pdf advisory
- https://cert-portal.siemens.com/productcert/txt/ssa-943925.txt advisory
- https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2024/icsa-24-046-15.json advisory
- https://www.cisa.gov/news-events/ics-advisories/icsa-24-046-15 advisory
- https://www.cisa.gov/uscert/ics/alerts/ICS-ALERT-10-301-01 url
- https://www.cisa.gov/resources-tools/resources/ics-recommended-practices url
- https://www.cisa.gov/topics/industrial-control-systems url
- https://us-cert.cisa.gov/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf url
- https://www.cisa.gov/sites/default/files/publications/Cybersecurity_Best_Practices_for_Industrial_Control_Systems.pdf url
- https://www.cisa.gov/uscert/ics/tips/ICS-TIP-12-146-01B url
- https://support.industry.siemens.com/cs/ww/en/view/109826954/ fix