Table of Contents
Advertisement
1.3
Security information
Note
Security
• Security recommendations
Refer to the information in the section Security recommendations (Page 35).
• Configuration with implementation of security measures
You can find a sample network configuration with the CM and the relevant data flows can
be found in the section Intended operating environment (Page 14).
Security Advisories
If Siemens detects and resolves security incidents in the products, this is published in Security
Advisories.
You can find the documents for CM on the following Siemens AG web page:
Link:
1#SecurityPublications)
There, enter "CM 1542-1" in the "Search Security Advisories" search field.
Security Incidents and fixes
The following Security Incidents are open for the CM 1542-1 at the time of publication of this
manual:
• None
The following Security Incidents have been fixed with the listed firmware versions:
• V3.0
– SSA-462066
– SSA-599968
– SSA-936080
SIMATIC CM 1542-1
Operating Instructions, 04/2023, C79000-G8976-C355-05
(https://new.siemens.com/global/en/products/services/cert.html?s=CM%201542-
Vulnerability known as TCP SACK PANIC in Industrial Products
Affected versions: All versions < V3.0
Remediation: Update to V3.0 or later version
Denial-of-Service Vulnerability in Profinet Devices
Affected versions: All versions < V3.0
Remediation: Update to V3.0 or later version
Multiple Vulnerabilities in Third-Party Component libcurl
Affected versions: All versions < V3.0
Remediation: Update to V3.0 or later version
Properties and functions
1.3 Security information
13
Advertisement
Table of Contents
