SSA-878278 (Last Update: 2020-01-14): Denial-of-Service Vulnerability in SIMATIC WinAC RTX (F) 2010

Published

2020-01-14 00:00:00 UTC

Summary

A vulnerability in SIMATIC WinAC RTX (F) 2010 controller software could allow an attacker to perform a denial-of-service attack if a large HTTP request is sent to the network port of the host where WinAC RTX is running.

Siemens has released SIMATIC WinAC RTX (F) 2010 incl. SP3 Update 1 that fixes the vulnerability, and recommends that customers update to this new version.