Siemens Energy CERT Services

Cybersecurity key visual

Cyber emergency response

Our experts in the Siemens Energy CERT teams immediately respond to security threats and incidents affecting Siemens Energy corporate infrastructure as well as Siemens Energy products, solutions, and services. 

A dedicated ProductCERT team

Siemens Energy has a dedicated ProductCERT team in place that manages all security-related issues in Siemens Energy products, solutions, and services. We cultivate strong relationships with external partners and security researchers to continuously improve the security of our portfolio and support Siemens Energy customers in managing their security risks.

As a Siemens Energy service provider, ProductCERT serves as the central contact for security researchers, vendors, and customers reporting potential Siemens Energy product security vulnerabilities.

 

ProductCERT coordinates and maintains communication with all involved internal and external parties in order to quickly and effectively respond to security issues. Security Advisories are issued to inform customers about measures that must be taken to securely operate Siemens Energy products and solutions.

 

Siemens CERT is the Siemens Energy service provider that secures our Siemens Energy corporate infrastructure. CERT monitors the current Cyber Threat Landscape for Siemens Energy and assesses its potential impact. Based on this know-how and the latest technological trends, it consults with the Information Technology department at Siemens Energy to improve the enterprise IT security. The team is responsible for coordinating the response to Cyber Security Incidents within Siemens. To achieve this, CERT leverages its relationships with various internal and external stakeholders worldwide, such as CSIRT networks, technical communities, and security researcher communities.

Latest cybersecurity news and alerts | 2020-12-23 | V1.0

New vulnerabilities in Treck TCP/IP stack

Siemens Energy is aware of the new security vulnerabilities in the Treck TCP/IP stack, disclosed on 2020-12-08 on Treck Inc.'s advisory page.
No Siemens Energy product is known to use Treck Inc.'s TCP/IP stack, or otherwise be affected by the reported vulnerabilities.
Note that Siemens products and systems might interact with products from other manufacturers that are affected by the reported vulnerabilities. In such cases, Siemens recommends that owners of operational infrastructures verify if these products are affected and evaluate the potential impact of the Ripple20 vulnerabilities. Siemens ProductCERT may release additional information in specific Security Advisories.

Security advisories

Siemens Energy security advisories

The Siemens Energy ProductCERT team investigates reports of security issues and publishes Security Advisories for validated security vulnerabilities that directly affect Siemens Energy products and require customer action. As part of its ongoing effort to help operators manage security risks and help keep their systems protected, Siemens Energy ProductCERT provides the information needed by operators to assess the impact of a security issue.

ID CVSS Score Document Title Info Document Version Last Update Download CVE Ids Tags Products Sector Results

Are you looking for the CERT Services page of Siemens AG? You can find it here.

Contact and reporting

Our Siemens Energy vulnerability disclosure process

We ask that you contact our CERT teams regarding any security-related question involving the Siemens Energy portfolio or infrastructure, particularly if you want to report a potential security issue. Please bear in mind that only emails in English or German can be processed, and encrypted communication is preferred. You can expect us to respond by the next business day in Munich, Germany.

Get in touch with ProductCERT or CERT

We ask that you contact our CERT teams regarding any security-related question involving the Siemens Energy portfolio or infrastructure, particularly if you want to report a potential security issue. Please bear in mind that only emails in English or German can be processed, and encrypted communication is preferred. You can expect us to respond by the next business day in Munich, Germany.

Icon support

Siemens Energy ProductCERT service – Contact for products, solutions, and services

PGP Public Key and Fingerprint: 9534 422C 0570 CCA7 FF6F C5FC D3F4 81EA 114A AFE4

Icon support

Siemens Energy CERT service – Contact for Siemens Energy corporate infrastructure

PGP Public Key and Fingerprint: A3D1 8E40 D104 DEAD A112 3FF6 B485 0E2E 1AA2 2CD8