This content is restricted.
Brief
Here is a summary of the provided document:
Summary:
As of January 10, 2023, CISA will no longer update ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. This document regards a vulnerability in Siemens' SIMATIC Field PG and SIMATIC IPC products, which allows an authenticated local user to potentially read other users' data. The vulnerability has a CVSS v3 base score of 6.5 and is assigned CVE-2022-40982. Siemens recommends ensuring only trusted individuals have access to the system and configuring the environment according to industrial security guidelines. CISA recommends minimizing network exposure, locating control systems behind firewalls, and using secure remote access methods. No public exploitation has been reported at this time, and the vulnerability is not exploitable remotely.
Highlights content goes here...
This content is restricted.
RADA.AI
Hello! I'm RADA.AI - Regulatory Analysis and Decision Assistance. Your Intelligent guide for compliance and decision-making. How can i assist you today?
Suggested
