Bulletins | CERT@VDE

Schneider Electric Modicon

Titel

Schneider Electric Modicon

Veröffentlicht

17. Dezember 2024 13:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-352-04

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 9.3 ATTENTION: Exploitable remotely/low attack complexity Vendor: Schneider Electric Equipment: Modicon M241 / M251 / M258 / LMC058 Vulnerability: Improper Input Validation 2. RISK EVALUATION Successful exploitation of this vulnerability could lead to a denial-of-service and a loss of confidentiality and integrity in ...

Rockwell Automation PowerMonitor 1000 Remote

Titel

Rockwell Automation PowerMonitor 1000 Remote

Veröffentlicht

17. Dezember 2024 13:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-352-03

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 9.3 ATTENTION: Exploitable remotely/low attack complexity Vendor: Rockwell Automation Equipment: PowerMonitor 1000 Remote Vulnerabilities: Unprotected Alternate Channel, Heap-based Buffer Overflow, Classic Buffer Overflow 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to perform edit operations, create admin users, perform ...

Hitachi Energy TropOS Devices Series 1400/2400/6400

Titel

Hitachi Energy TropOS Devices Series 1400/2400/6400

Veröffentlicht

17. Dezember 2024 13:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-352-02

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 5.3 ATTENTION: Exploitable remotely/low attack complexity Vendor: Hitachi Energy Equipment: TropOS Devices Series 1400/2400/6400 Vulnerability: Improper Input Validation 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to cause a denial-of-service condition. 3. TECHNICAL DETAILS 3.1 AFFECTED PRODUCTS The following ...

ThreatQuotient ThreatQ Platform

Titel

ThreatQuotient ThreatQ Platform

Veröffentlicht

17. Dezember 2024 13:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-352-01

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.7 ATTENTION: Exploitable remotely/low attack complexity Vendor: ThreatQuotient Inc. Equipment: ThreatQ Platform Vulnerability: Command Injection 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to perform remote code execution. 3. TECHNICAL DETAILS 3.1 AFFECTED PRODUCTS The following versions of ThreatQuotient ...

16.12.2024

SSA-928984 V1.0: Heap-based Buffer Overflow Vulnerability in User Management Component (UMC)

Titel

SSA-928984 V1.0: Heap-based Buffer Overflow Vulnerability in User Management Component (UMC)

Veröffentlicht

16. Dezember 2024 01:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-928984.html

Text

Siemens User Management Component (UMC) is affected by a heap-based buffer overflow vulnerability which could allow an unauthenticated remote attacker arbitrary code execution. Siemens has released new versions for several affected products and recommends to update to the latest versions. Siemens is preparing further fix versions and recommends countermeasures for ...

Siemens CPCI85 Central Processing/Communication

Titel

Siemens CPCI85 Central Processing/Communication

Veröffentlicht

12. Dezember 2024 13:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-347-01

Text

As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, see Siemens' ProductCERT Security Advisories (CERT Services | Services | Siemens Global). View CSAF 1. EXECUTIVE SUMMARY CVSS ...

Siemens SENTRON Powercenter 1000

Titel

Siemens SENTRON Powercenter 1000

Veröffentlicht

12. Dezember 2024 13:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-347-10

Text

As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories (CERT Services | Services | Siemens Global). View CSAF 1. EXECUTIVE SUMMARY ...

Siemens Solid Edge SE2024

Titel

Siemens Solid Edge SE2024

Veröffentlicht

12. Dezember 2024 13:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-347-07

Text

Siemens Teamcenter Visualization

Titel

Siemens Teamcenter Visualization

Veröffentlicht

12. Dezember 2024 13:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-347-09

Text

SSA-097435 V1.7 (Last Update: 2024-12-12): Usernames Disclosure Vulnerability in Mendix Runtime

Titel

SSA-097435 V1.7 (Last Update: 2024-12-12): Usernames Disclosure Vulnerability in Mendix Runtime

Veröffentlicht

12. Dezember 2024 01:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-097435.html

Text

Mendix Runtime contains an observable response discrepancy vulnerability when validating usernames during authentication. This could allow unauthenticated remote attackers to distinguish between valid and invalid usernames. Siemens has released new versions for the affected products and recommends to update to the latest versions. Note that some, Mendix Runtime version lines ...

SSA-979056 V1.1 (Last Update: 2024-12-12): Out of Bounds Write Vulnerability in Parasolid

Titel

SSA-979056 V1.1 (Last Update: 2024-12-12): Out of Bounds Write Vulnerability in Parasolid

Veröffentlicht

12. Dezember 2024 01:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-979056.html

Text

Parasolid is affected by an out of bounds write vulnerability that could be triggered when the application is parsing X_T data or a specially crafted file in X_T format. If a user is tricked to open a malicious file with the affected applications, an attacker could leverage the vulnerability to ...

MOBATIME Network Master Clock

Titel

MOBATIME Network Master Clock

Veröffentlicht

10. Dezember 2024 13:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-345-01

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 9.3 ATTENTION: Exploitable remotely/Low attack complexity Vendor: MOBATIME Equipment: Network Master Clock - DTS 4801 Vulnerability: Use of Default Credentials 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to take control of the operating system for this product. 3. ...

Schneider Electric FoxRTU Station

Titel

Schneider Electric FoxRTU Station

Veröffentlicht

10. Dezember 2024 13:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-345-03

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 7.3 ATTENTION: Low Attack Complexity Vendor: Schneider Electric Equipment: FoxRTU Station Vulnerability: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to perform remote code execution. 3. TECHNICAL DETAILS ...

Schneider Electric EcoStruxure Foxboro DCS Core Control Services

Titel

Schneider Electric EcoStruxure Foxboro DCS Core Control Services

Veröffentlicht

10. Dezember 2024 13:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-345-02

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low Attack Complexity Vendor: Schneider Electric Equipment: EcoStruxure Foxboro DCS Core Control Services Vulnerabilities: Out-of-bounds Write, Improper Validation of Array Index, Improper Input Validation 2. RISK EVALUATION Successful exploitation of these vulnerabilities could lead to a loss of system functionality or ...

Rockwell Automation Arena (Update A)

Titel

Rockwell Automation Arena (Update A)

Veröffentlicht

10. Dezember 2024 13:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-345-06

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.5 ATTENTION: Low attack complexity Vendor: Rockwell Automation Equipment: Arena Vulnerabilities: Use After Free, Out-of-bounds Write, Improper Initialization, Out-of-bounds Read, Dependency on Vulnerable Third-Party Component 2. RISK EVALUATION Successful exploitation of these vulnerabilities could result in execution of arbitrary code. 3. TECHNICAL DETAILS ...

SSA-384652 V1.0: Cross-Site Request Forgery (CSRF) Vulnerability in RUGGEDCOM ROX II

Titel

SSA-384652 V1.0: Cross-Site Request Forgery (CSRF) Vulnerability in RUGGEDCOM ROX II

Veröffentlicht

10. Dezember 2024 01:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-384652.html

Text

The CLI feature in the web interface of RUGGEDCOM ROX II devices is vulnerable to cross-site request forgery (CSRF), which could allow an attacker to perform administrative actions if an authenticated user is tricked into accessing a malicious link. Siemens has released new versions for the affected products and recommends ...

SSA-097435 V1.6 (Last Update: 2024-12-10): Usernames Disclosure Vulnerability in Mendix Runtime

Titel

SSA-097435 V1.6 (Last Update: 2024-12-10): Usernames Disclosure Vulnerability in Mendix Runtime

Veröffentlicht

10. Dezember 2024 01:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-097435.html

Text

SSA-392859 V1.0: Local Arbitrary Code Execution Vulnerability in Siemens Engineering Platforms before V20

Titel

SSA-392859 V1.0: Local Arbitrary Code Execution Vulnerability in Siemens Engineering Platforms before V20

Veröffentlicht

10. Dezember 2024 01:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-392859.html

Text

Affected products contain a local arbitrary code execution vulnerability that could allow an attacker to perform actions against the operation system of that environment. Siemens is preparing fix versions and recommends countermeasures for products where fixes are not, or not yet available. Siemens has released products based on the Totally ...

SSA-364175 V1.4 (Last Update: 2024-12-10): Multiple Vulnerabilities in Palo Alto Networks Virtual NGFW on RUGGEDCOM APE1808 Dev...

Titel

SSA-364175 V1.4 (Last Update: 2024-12-10): Multiple Vulnerabilities in Palo Alto Networks Virtual NGFW on RUGGEDCOM APE1808 Devices Before V11.1.4-h1

Veröffentlicht

10. Dezember 2024 01:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-364175.html

Text

Palo Alto Networks has published [1] information on vulnerabilities in PAN-OS. This advisory lists the related Siemens Industrial products affected by these vulnerabilities. Siemens is preparing updates and recommends specific countermeasures for products where updates are not, or not yet available. Customers are advised to consult and implement the workarounds ...

SSA-042050 V1.2 (Last Update: 2024-12-10): Know-How Protection Mechanism Failure in TIA Portal

Titel

SSA-042050 V1.2 (Last Update: 2024-12-10): Know-How Protection Mechanism Failure in TIA Portal

Veröffentlicht

10. Dezember 2024 01:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-042050.html

Text

The know-how protection feature in Totally Integrated Automation Portal (TIA Portal) does not properly update the encryption of existing program blocks when a project file is updated. This could allow attackers with access to the project file to recover previous - yet unprotected - versions of the project without the ...

SSA-264814 V1.4 (Last Update: 2024-12-10): Timing Based Side Channel Vulnerability in the OpenSSL RSA Decryption in SIMATIC Pro...

Titel

SSA-264814 V1.4 (Last Update: 2024-12-10): Timing Based Side Channel Vulnerability in the OpenSSL RSA Decryption in SIMATIC Products

Veröffentlicht

10. Dezember 2024 01:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-264814.html

Text

Several SIMATIC products are affected by a timing based side channel vulnerability in the OpenSSL RSA Decryption (CVE-2023-4304), as disclosed on 2023-02-07 at https://www.openssl.org/news/secadv/20230207.txt. Siemens has released new versions for several affected products and recommends to update to the latest versions. Siemens recommends specific countermeasures for products where fixes are ...

SSA-340240 V1.1 (Last Update: 2024-12-10): Denial of Service Vulnerability in SENTRON Powercenter 1000/1100 With 3RV2921-5M Acc...

Titel

SSA-340240 V1.1 (Last Update: 2024-12-10): Denial of Service Vulnerability in SENTRON Powercenter 1000/1100 With 3RV2921-5M Accessory

Veröffentlicht

10. Dezember 2024 01:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-340240.html

Text

A vulnerability in SENTRON Powercenter 1000/1100 with 3RV2921-5M accessory could allow an attacker to cause a denial of service condition. Siemens is preparing fix versions and recommends specific countermeasures for products where fixes are not, or not yet available.

SSA-673996 V1.1 (Last Update: 2024-12-10): Buffer Overflow Vulnerability in Third-Party Component in SICAM and SITIPE Products

Titel

SSA-673996 V1.1 (Last Update: 2024-12-10): Buffer Overflow Vulnerability in Third-Party Component in SICAM and SITIPE Products

Veröffentlicht

10. Dezember 2024 01:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-673996.html

Text

Multiple SICAM products are affected by buffer overflow vulnerability in the IEC 61850 Client libraries from Triangle MicroWorks that could allow an unauthenticated remote attacker to create a denial of service condition by sending specially crafted MMS messages. Affected SICAM and SITIPE products: SICAM A8000 Device firmware ET85 for CP-8000/CP-8021/CP-8022 ...

SSA-128393 V1.0: Firmware Decryption Vulnerability in SICAM A8000 CP-8031 and CP-8050

Titel

SSA-128393 V1.0: Firmware Decryption Vulnerability in SICAM A8000 CP-8031 and CP-8050

Veröffentlicht

10. Dezember 2024 01:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-128393.html

Text

The SICAM A8000 CP-8031 and CP-8050 devices are affected by a vulnerability that could allow an attacker with physical access to the device to decrypt the firmware. Siemens has released new firmware and hardware versions for the affected products and recommends to update to the latest versions. Both the firmware ...