September 11, 2018

The NCCIC has updated this advisory with additional details on mitigation measures. NCCIC/ICS-CERT.

May 17, 2018

The NCCIC has released an advisory on an improper input validation vulnerability in Siemens SIMATIC S7-400 CPU. Multiple versions of this product are affected. Successful exploitation of this vulnerability could cause a denial-of-service condition of the CPU. The CPU will remain in DEFECT mode until a manual restart is performed. Siemens has released updates and recommends users update to the new version. The NCCIC also recommends a series of defensive measures to minimize the risk of exploitation of these vulnerabilities. NCCIC/ICS-CERT.