[Control systems] Siemens security advisory (AV26-689)

Serial number: AV26-689
Date: July 14, 2026

On July 14, 2026, Siemens published security advisories to address vulnerabilities in the following products. Included were updates for the following products:

  • CADRA - versions prior to V2511
  • Desigo CC family V7/V8 - all versions
  • Desigo CC family V9 - versions prior to V9.0 QU1
  • IAM Client - multiple versions and models
  • Mendix Runtime - all versions
  • Opcenter X - versions prior to V2604
  • Palo Alto Networks PAN-OS on RUGGEDCOM APE1808 - all versions
  • SIDIS Secured SmartPlug - versions prior to V7.26.0310
  • SIMATIC S7-1500 CPU family - versions prior to V3.1.6
  • SIMATIC S7-PLCSIM Advanced - all versions
  • Simcenter STAR-CCM+ - all versions

The Cyber Centre encourages users and administrators to review the web link provided, perform the suggested mitigations and apply the necessary updates.

Date modified: