First published: Sat Dec 07 2013(Updated: )
Siemens SINAMICS S/G controllers with firmware before 4.6.11 do not require authentication for FTP and TELNET sessions, which allows remote attackers to bypass intended access restrictions via TCP traffic to port (1) 21 or (2) 23.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Siemens Sinamics S\/g Family Firmware | <=4.6 | |
Siemens Sinamics G110 | ||
Siemens Sinamics G110d | ||
Siemens Sinamics G120 | ||
Siemens Sinamics G120c | ||
Siemens Sinamics G120d | ||
Siemens Sinamics G120p | ||
Siemens Sinamics G130 | ||
Siemens Sinamics G150 | ||
Siemens Sinamics G180 | ||
Siemens Sinamics S110 | ||
Siemens Sinamics S120 | ||
Siemens Sinamics S120cm | ||
Siemens Sinamics S150 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.