Siemens WinCC Certificate Manager Vulnerability Advisory
Siemens WinCC Certificate Manager Vulnerability Advisory
🚨 Attention: A critical vulnerability has been identified in the Siemens WinCC Certificate Manager that could potentially allow attackers to extract sensitive information. This vulnerability is tracked as CVE-2026-24349 and is described as “Insufficient protection of key material in WinCC Certificate Manager.”
Affected Products
The vulnerability impacts the following versions of SIMATIC WinCC Unified PC Runtime:
- V16
- V17
- V18
- V19
- V20 (all versions)
- V21 versions prior to 21.0.2
Recommendations
Siemens has released an updated version for SIMATIC WinCC Unified PC Runtime V21 and strongly recommends updating to V21 Update 2 or later. For products where no fix is planned, Siemens advises that only qualified personnel operate the affected product, following the relevant documentation and safety instructions.
Security Measures
To enhance security, Siemens recommends:
- Protecting network access to devices with appropriate mechanisms.
- Configuring the environment according to Siemens’ operational guidelines for Industrial Security.
CISA also advises users to take defensive measures to minimize the risk of exploitation, including:
- Minimizing network exposure for all control system devices.
- Ensuring devices are not accessible from the internet.
- Using secure methods such as Virtual Private Networks (VPNs) for remote access.
Organizations observing suspected malicious activity should follow established internal procedures and report findings to CISA.
For more detailed information, please refer to the advisory.