CVE-2022-38773

Affected devices do not contain an Immutable Root of Trust in Hardware. With this the integrity of the code executed on the device can not be validated during load-time. An attacker with physical access to the device could use this to replace the boot image of the device and execute arbitrary cod...

The vulnerability of microprogrammed software in Siemens SIMATIC S7-1500 CPU Family programmable logic controllers stems from the lack of an immutable root cause in the equipment. This allows a hacker to replace the device’s load image and execute arbitrary code.

The vulnerability of the microprogrammed control systems of Siemens SIMATIC S7-1500 CPU Family lies in the absence of an immutable trust base in the equipment. Exploiting this vulnerability allows a perpetrator to replace the device’s boot image and execute arbitrary code...

CVE-2022-38773

Affected devices do not contain an Immutable Root of Trust in Hardware. With this the integrity of the code executed on the device can not be validated during load-time. An attacker with physical access to the device could use this to replace the boot image of the device and execute arbitrary cod...

Siemens S7-1500 CPU devices

As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories CERT Services | Services |...