OpenSSL vulnerabilities discovered in Siemens industrial control systems are being exploited in the wild. The company has updates available for some, but not all, of the affected products. The ROX, APE, S7-1500 and CP1543-1 products are as-yet unpatched. The products are used in a number of critical industries, including chemical, manufacturing, energy, food and agriculture and water and wastewater systems. Siemens had to update its OpenSSL implementations in the wake of the Heartbleed OpenSSL vulnerability.
Source: https://threatpost.com/siemens-working-on-patches-for-openssl-bugs-under-exploit/107308/