Siemens SINEC INS

Plan PatchCVSS 8.8ICS-CERT ICSA-22-258-05Mar 8, 2022

Siemens

Attack path

Attack VectorAdjacent

Auth RequiredNone

ComplexityLow

User InteractionNone needed

Summary

Multiple vulnerabilities in SINEC INS before version 1.0 SP2 affecting third-party components could allow denial of service, sensitive data disclosure, or system integrity violations. Affected versions include SINEC INS (<V1.0_SP2). Siemens has released version 1.0 SP2 as the fix.

What this means

What could happen

An attacker with network access to an unpatched SINEC INS could crash the system, steal configuration data, or modify its behavior—disrupting critical network functions that manage industrial control systems.

Who's at risk

Organizations operating Siemens SINEC INS in industrial networks should care about this—the system acts as a network controller for Siemens automation equipment. Critical if SINEC INS manages access to PLCs, drives, or HMIs in water treatment, power distribution, or other process automation environments.

How it could be exploited

An attacker on the same network segment or with routed access to the SINEC INS could exploit one or more of the third-party component vulnerabilities to trigger a denial of service, extract sensitive data, or alter system integrity without requiring authentication.

Prerequisites

Network access to SINEC INS device (adjacent network segment or routed access)
No credentials or authentication required

remotely exploitableno authentication requiredlow complexityhigh CVSS score (8.8)affects network infrastructure controlling industrial devices

Exploitability

Some exploitation risk — EPSS score 8.9%

Public Proof-of-Concept (PoC) on GitHub (5 repositories)

Affected products (11)

11 with fix

ProductAffected VersionsFix Status

RUGGEDCOM ROX MX5000≥ V2.3.0 and < V2.15.02.15.0

RUGGEDCOM ROX RX1400< V2.15.02.15.0

RUGGEDCOM ROX RX1500≥ V2.3.0 and < V2.15.02.15.0

RUGGEDCOM ROX RX1501≥ V2.3.0 and < V2.15.02.15.0

RUGGEDCOM ROX RX1510≥ V2.3.0 and < V2.15.02.15.0

RUGGEDCOM ROX RX1511≥ V2.3.0 and < V2.15.02.15.0

RUGGEDCOM ROX RX1512≥ V2.3.0 and < V2.15.02.15.0

RUGGEDCOM ROX RX1524< V2.15.02.15.0

Remediation & Mitigation

0/4

Do now

0/2

SINEC INS

HARDENINGIsolate SINEC INS behind firewall and restrict network access to authorized devices only

HARDENINGImplement network segmentation to prevent unauthorized access to SINEC INS from business networks or the Internet

Schedule — requires maintenance window

0/1

Patching may require device reboot — plan for process interruption

SINEC INS

HOTFIXUpdate SINEC INS to version 1.0 SP2 or later

Long-term hardening

0/1

HARDENINGIf remote access is required, use VPN with secure configuration and keep VPN software updated

CVEs (14)

CVE-2020-12762 CVE-2020-7793 CVE-2020-28168 CVE-2020-28500 CVE-2021-3749 CVE-2021-4160 CVE-2021-23337 CVE-2021-23839 CVE-2021-23841 CVE-2021-25217 CVE-2021-25220 CVE-2022-0155 CVE-2022-0235 CVE-2022-0396

View full CISA ICS-CERT advisory

↑↓ Navigate · Esc Close

API: /api/v1/advisories/11f1d2ba-680d-4a2d-a989-471aa508df16

Get OT security insights every Tuesday

Advisory breakdowns, a weekly summary, and incident analyses for the people actually defending OT environments. Free, no account required.