SSA-197012 (Last Update: 2018-07-03): Vulnerabilities in SICLOCK central plant clocks

Published

2018-07-03 00:00:00

Summary

SICLOCK TC devices are affected by multiple vulnerabilities that could allow an attacker to cause Denial-of-Service conditions, bypass the authentication, and modify the firmware of the device or the administrative client.

SICLOCK TC devices are in a phase out process. Siemens recommends mitigations to reduce the risk.