First published: Tue Sep 14 2021(Updated: )
A vulnerability has been identified in SIMATIC CP 1543-1 (incl. SIPLUS variants) (All versions < V3.0), SIMATIC CP 1545-1 (All versions < V1.1). An attacker with access to the subnet of the affected device could retrieve sensitive information stored in cleartext.
Credit: productcert@siemens.com
Affected Software | Affected Version | How to fix |
---|---|---|
Siemens Simatic Cp 1543-1 Firmware | <3.0 | |
Siemens Simatic Cp 1543-1 | ||
Siemens Simatic Cp 1545-1 Firmware | <1.1 | |
Siemens SIMATIC CP 1545-1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this issue is CVE-2021-33716.
The severity of CVE-2021-33716 is medium with a CVSS score of 6.5.
All versions of SIMATIC CP 1543-1 (incl. SIPLUS variants) before V3.0 and all versions of SIMATIC CP 1545-1 before V1.1 are affected by CVE-2021-33716.
An attacker with access to the subnet of the affected device could retrieve sensitive information stored in cleartext.
You can find more information about CVE-2021-33716 at the following link: [SIEMENS - Security Advisory](https://cert-portal.siemens.com/productcert/pdf/ssa-535997.pdf)