OTPulse
FeedAboutContact

Siemens Industrial Edge Management

Monitor7.5ICS-CERT ICSA-25-254-06Sep 9, 2025
Attack VectorNetwork
Auth RequiredNone
ComplexityLow
User InteractionNone needed
Summary

Industrial Edge Management OS (all versions) is vulnerable to a remote denial of service attack that could crash the management platform. An unauthenticated attacker on the network can trigger this condition, disrupting management and orchestration of edge devices. Siemens has not released a patch and recommends network protection mechanisms and adherence to Industrial Security operational guidelines as mitigations.

What this means
What could happen
An attacker could remotely crash the Industrial Edge Management operating system, disrupting the management and orchestration of edge computing devices that support manufacturing process automation and monitoring.
Who's at risk
Manufacturers using Siemens Industrial Edge Management (IEM-OS) to manage edge computing infrastructure supporting production lines, quality control systems, or real-time process monitoring. This affects any facility relying on IEM-OS for device orchestration and management across manufacturing operations.
How it could be exploited
An attacker on the network could send a crafted request to the Industrial Edge Management OS that triggers a denial of service condition, causing the management platform to become unresponsive and unable to control or communicate with connected edge devices.
Prerequisites
  • Network access to the Industrial Edge Management OS
  • No authentication required
remotely exploitableno authentication requiredlow complexityno patch availableaffects production management infrastructure
Exploitability
Low exploit probability (EPSS 0.4%)
Affected products (1)
ProductAffected VersionsFix Status
Industrial Edge Management OS (IEM-OS)All versionsNo fix (EOL)
Remediation & Mitigation
0/4
Do now
0/2
HARDENINGImplement network segmentation and firewall rules to restrict access to Industrial Edge Management OS to only authorized engineering workstations and control systems
HARDENINGMonitor Industrial Edge Management OS for unexpected service crashes or availability issues and establish alerting for management platform downtime
Schedule — requires maintenance window
0/2

Patching may require device reboot — plan for process interruption

HARDENINGReview and implement Siemens operational guidelines for Industrial Security (available at https://www.siemens.com/cert/operational-guidelines-industrial-security) for your environment
HARDENINGFollow all recommendations in Industrial Edge Management product documentation regarding secure deployment and operation
View full CISA ICS-CERT advisory
↑↓ Navigate · Esc Close
API: /api/v1/advisories/a7dff9b0-bfed-45b9-8a25-0c06d8dae319