VDB
SSA-561322
SSA-561322
PUBLISHED
CVSS 7.5 HIGH
SIMATIC MV500 devices before V3.3.4 are affected by multiple vulnerabilities in the web server and several third-party components. Siemens has released updates for the affected products and recommends to update to the latest versions.
Risk Scores
CVSS 3.1
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| SIMATIC MV560 U (6GF3560-0LE10) | ||
| SIMATIC MV540 H (6GF3540-0GE10) | ||
| SIMATIC MV540 S (6GF3540-0CD10) | ||
| SIMATIC MV560 X (6GF3560-0HE10) | ||
| SIMATIC MV550 H (6GF3550-0GE10) | ||
| SIMATIC MV550 S (6GF3550-0CD10) |
Exploit Intelligence
- https://cert-portal.siemens.com/productcert/html/ssa-561322.html (circl)
- https://cert-portal.siemens.com/productcert/csaf/ssa-561322.json (circl)
- https://cert-portal.siemens.com/productcert/pdf/ssa-561322.pdf (circl)
- https://cert-portal.siemens.com/productcert/txt/ssa-561322.txt (circl)
- https://support.industry.siemens.com/cs/ww/en/view/109821128/ (circl)
Timeline
- CVE Published
References
- https://cert-portal.siemens.com/productcert/html/ssa-561322.html advisory
- https://cert-portal.siemens.com/productcert/csaf/ssa-561322.json advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-561322.pdf advisory
- https://cert-portal.siemens.com/productcert/txt/ssa-561322.txt advisory
- https://support.industry.siemens.com/cs/ww/en/view/109821128/ fix