Siemens and PKE SiNVR/SiVMS Video Server (Update A)

Published

2021-04-20 14:00:02 UTC

Summary

This updated advisory is a follow-up to the original advisory titled ICSA-20-070-01 Siemens SiNVR 3 that was published March 10, 2020, on the ICS webpage on us-cert.cisa.gov. This advisory contains mitigations for Cleartext Storage in a File or on Disk, Path Traversal, Improper Input Validation, and Weak Cryptography for Passwords vulnerabilities in Siemens and PKE SiNVR/SiVMS video management platforms.