A security advisory has identified multiple vulnerabilities in several Siemens products, including SCALANCE devices with versions prior to 3.3. These flaws could allow remote attackers to execute arbitrary code, elevate privileges, cause denial-of-service incidents, and compromise data integrity or confidentiality. Affected systems include models such as XCH328, XCM324, XCM328, XCM332, and various XRM334 variants. Siemens has issued a security bulletin (SSA-089022) with patches and updates. Users are advised to consult the official documentation for remediation steps. The vulnerabilities are tracked under multiple CVE identifiers, including CVE-2022-48174 and CVE-2025-9232.
Summary of content from
https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0101/
Made by AI. If you spot anything of concern write us at contact@cybach.com. We’ll promptly correct irregularities.