Industrial Security Alert - 03/05/2015 (second publication)
Vulnerability in S7-300 CPU
Siemens was notified of a vulnerability in the S7-300 CPU and recommends specific mitigations. Siemens will update the ProductCERT advisory when new information becomes available.
We thank Johannes Klick, Christian Pfahl, Martin Gebert, and Lucas Jacob from Freie Universität Berlin’s work team SCADACS for their information.