Security searchers have found a security flaw with an hardcoded private key.
Basically it affects every S7-1200 and S7-1500 CPU version before Tia Portal V17.
No known cases of use yet but regarding the number of CPUs who carry this flaw, some customer may want to know the problem in some critical industries.
https://duo.com/decipher/hardcoded-private-key-leads-to-full-control-of-some-siemens-plcs
https://www.electropages.com/blog/2...urity-bug-reveals-use-hardcoded-universal-key
Siemens official communication:
https://cert-portal.siemens.com/productcert/html/ssa-568427.html
https://cert-portal.siemens.com/productcert/html/ssb-898115.html
Basically it affects every S7-1200 and S7-1500 CPU version before Tia Portal V17.
No known cases of use yet but regarding the number of CPUs who carry this flaw, some customer may want to know the problem in some critical industries.
https://duo.com/decipher/hardcoded-private-key-leads-to-full-control-of-some-siemens-plcs
https://www.electropages.com/blog/2...urity-bug-reveals-use-hardcoded-universal-key
Siemens official communication:
https://cert-portal.siemens.com/productcert/html/ssa-568427.html
https://cert-portal.siemens.com/productcert/html/ssb-898115.html