SSA-359303 (Last Update: 2020-04-14): Debug Port in TIM 3V-IE and 4R-IE Family Devices

Published

2020-04-14 00:00:00 UTC

Summary

The latest update for TIM 3V-IE family devices and TIM 4R-IE family devices fixes a vulnerability that could allow an unauthenticated attacker with network access to port 17185/udp to gain full control over the device. The devices are only vulnerable if the IP address is configured to 192.168.1.2. Siemens has released updates for the affected products and recommends that customers update to the new version.

Source

https://cert-portal.siemens.com/productcert/pdf/ssa-359303.pdf