Siemens SENTRON Powercenter 1000
Low RiskICS-CERT ICSA-24-347-10Dec 10, 2024
SiemensEnergy
Summary
SENTRON Powercenter 1000 and 1100 devices are not affected by a denial of service vulnerability that was initially reported to occur during Bluetooth Low Energy (BLE) pairing. Siemens confirmed through detailed analysis that these devices do not contain the vulnerable code path. This advisory serves as a clearance notice for operators of these products.
What this means
What could happen
No impact; Siemens confirmed that SENTRON Powercenter devices are not affected by the reported denial of service vulnerability during Bluetooth pairing.
Who's at risk
This advisory affects operators of Siemens SENTRON Powercenter 1000 and 1100 devices in electrical power distribution and energy infrastructure. However, detailed analysis confirmed the devices are not vulnerable to the reported denial of service issue.
How it could be exploited
Not applicable. The vulnerability does not affect these devices.
Exploitability
Unlikely to be exploited — EPSS score 0.1%
Affected products (2)
2 pending
ProductAffected VersionsFix Status
SENTRON Powercenter 1000 (7KN1110-0MC00)All versionsNo fix yet
SENTRON Powercenter 1100 (7KN1111-0MC00)All versionsNo fix yet
Remediation & Mitigation
0/2
Long-term hardening
0/2HARDENINGNo remediation required; devices are not affected by the reported vulnerability.
HARDENINGFollow Siemens operational guidelines for Industrial Security to protect network access with appropriate mechanisms.
CVEs (1)
↑↓ Navigate · Esc Close
API:
/api/v1/advisories/055ed23d-b392-4c13-a9b6-1a305ee8167eGet OT security insights every Tuesday
Advisory breakdowns, a weekly summary, and incident analyses for the people actually defending OT environments. Free, no account required.