GE Historian ICS Advisory - CSA-22-347-XX; GED 23-01

This article contains information related to the GE Historian CVE Advisory released on January 16th 2023. Included are links to the vendor hosted files related to this advisory.

 Instructions

Obtain the necessary information for addressing CVE advisory GED 23-01

Read the attached guide ‘Historian Advisory’ or download the 'Historian Advisory 'from GE’s Support Site

  1. Read the CISA CVE on the US CYBERSECURITY & INFRASTRUCTURE SECURITY AGENCY web site

  2. Download the Secure Deployment Guide for Proficy-Historian

  3. Download the correct SIM and MTLS Security Enabling Guide with related instructions based on your existing product version. NOTE: You MUST configure the certificates according to the MTLS guide or the core Historian Services WILL NOT START after applying the SIM

    1. Historian 2023 (select download updates)

    2. Historian 2022 SIM 2

    3. Historian 9.1 SIM 3

    4. Historian 9.0 SIM 2

    5. Historian 8.1 SIM 6

    6. Historian 8.0 SIM 3

    7. Historian 7.2 SIM 4

    8. Historian 7.1 SIM 4

    9. Historian 7.0 SP6 SIM 3

  4. Follow the Secure Deployment Guide recommendations

It is important to follow and implement the Secure Deployment Guide to minimize your Cybersecurity attack surface

 

More information will be posted as updates become available

 

AutomaTech Inc.