Vulnetix
Try Vulnetix Request Demo
SSA-729965 PUBLISHED CVSS 7.400000095367432 HIGH

The latest update for SINUMERIK Integrate Operate Client fixes a vulnerability that could allow an attacker to spoof any SSL server certificate and conduct man-in-the-middle attacks. Siemens is preparing updates and recommends specific countermeasures for products where updates are not, or not yet available

Risk Scores

CVSS v3.1
7.400000095367432
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C

Affected Products

VendorProductVersions
SINUMERIK Manage MyTools
SINUMERIK Optimize MyProgramming /NX-Cam Editor
SINUMERIK Analyze MyPerformance
SINUMERIK Operate V4.94
SINUMERIK Manage MyPrograms
SINUMERIK Manage MyResources /Tools
SINUMERIK Manage MyResources /Programs
SINUMERIK Operate V4.8
SINUMERIK Integrate Client 03
SINUMERIK Integrate Client 02
SINUMERIK Manage MyMachines /Spindel Monitor
SINUMERIK Analyse MyCondition
SINUMERIK Integrate Client 04
SINUMERIK Integrate for Production 5.1
SINUMERIK Analyze MyPerformance /OEE-Tuning
SINUMERIK Manage MyMachines /Remote
SINUMERIK Analyze MyPerformance /OEE-Monitor
SINUMERIK Operate V4.93
SINUMERIK Integrate for Production 4.1
SINUMERIK Manage MyMachines

Timeline

References

Open in Interactive Console →