Bulletins | CERT@VDE

SSA-242353 (Last Update: 2020-01-14): Access Control Vulnerability in SINAMICS PERFECT HARMONY GH180

Titel

SSA-242353 (Last Update: 2020-01-14): Access Control Vulnerability in SINAMICS PERFECT HARMONY GH180

Veröffentlicht

14. Januar 2020 01:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-242353.pdf

Text

A race condition in the restart behaviour of SINAMICS PERFECT HARMONY GH180 could allow an unauthorized attacker with physical access to the affected device to restart the HMI with disabled security controls, which could be used to launch further attacks against the affected device. Siemens recommends customers to apply a ...

14.01.2020

SSA-480230 (Last Update: 2020-01-14): Denial-of-Service in Webserver of Industrial Products

Titel

SSA-480230 (Last Update: 2020-01-14): Denial-of-Service in Webserver of Industrial Products

Veröffentlicht

14. Januar 2020 01:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-480230.pdf

Text

A vulnerability in the affected devices could allow an unauthorized attacker with network access to the webserver of an affected device to perform a denial-of-service attack. Siemens has released updates for several affected products, and recommends that customers update to the new version. Siemens is preparing further updates and recommends ...

14.01.2020

SSA-557804 (Last Update: 2020-01-14): Mirror Port Isolation Vulnerability in SCALANCE X Switches

Titel

SSA-557804 (Last Update: 2020-01-14): Mirror Port Isolation Vulnerability in SCALANCE X Switches

Veröffentlicht

14. Januar 2020 01:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-557804.pdf

Text

A vulnerability was identified in several SCALANCE X switches that could allow an attacker to feed information into a network via the mirror port with the monitor barrier feature enabled. The monitor barrier implementation in several SCALANCE X switches does allow traffic to be directed back into the mirroring network. ...

07.01.2020

Interpeak IPnet TCP/IP Stack (Update D)

Titel

Interpeak IPnet TCP/IP Stack (Update D)

Veröffentlicht

7. Januar 2020 16:00

URL

https://www.us-cert.gov/ics/advisories/icsma-19-274-01

Text

This updated medical advisory is a follow-up to the advisory update titled ICSMA-19-274-01 Interpeak IPnet TCP/IP Stack (Update C) published November 5, 2019, on the ICS webpage on us-cert.gov. This updated medical advisory contains mitigations for stack-based buffer overflow, heap-based buffer overflow, integer underflow, improper restriction of operations within the ...

Dezember 2019

Philips Veradius Unity, Pulsera, and Endura Dual WAN Routers

Titel

Philips Veradius Unity, Pulsera, and Endura Dual WAN Routers

Veröffentlicht

19. Dezember 2019 16:30

URL

https://www.us-cert.gov/ics/advisories/icsma-19-353-01

Text

This advisory contains mitigations for an inadequate encryption strength vulnerability in certain Philips WAN routers.

Moxa EDS Ethernet Switches

Titel

Moxa EDS Ethernet Switches

Veröffentlicht

19. Dezember 2019 16:25

URL

https://www.us-cert.gov/ics/advisories/icsa-19-353-01

Text

This advisory contains mitigations for an uncontrolled resource consumption vulnerability in Moxa EDS Ethernet Switches.

Equinox Control Expert

Titel

Equinox Control Expert

Veröffentlicht

19. Dezember 2019 16:20

URL

https://www.us-cert.gov/ics/advisories/icsa-19-353-02

Text

This advisory contains mitigations for an SQL injection vulnerability in Equinox's Control Expert HMI/SCADA management platform.

Reliable Controls MACH-ProWebCom/Sys

Titel

Reliable Controls MACH-ProWebCom/Sys

Veröffentlicht

19. Dezember 2019 16:10

URL

https://www.us-cert.gov/ics/advisories/icsa-19-353-04

Text

This advisory contains mitigations for a cross-site scripting vulnerability in Reliable Controls' MACH-ProWebCom/Sys web enabled building controllers.

AVEVA Vijeo Citect and Citect SCADA (Update A)

Titel

AVEVA Vijeo Citect and Citect SCADA (Update A)

Veröffentlicht

19. Dezember 2019 16:00

URL

https://www.us-cert.gov/ics/advisories/icsa-19-290-01

Text

This updated advisory is a follow-up to the original advisory titled “ICSA-19-290-01 AVEVA Vijeo Citect and Citect SCADA” that was published October 17, 2019, on the ICS webpage on us-cert.gov. This advisory contains mitigations for a stack-based buffer overflow vulnerability in the AVEVA Vijeo Citect and Citect SCADA.

17.12.2019

GE S2020/S2020G Fast Switch 61850

Titel

GE S2020/S2020G Fast Switch 61850

Veröffentlicht

17. Dezember 2019 16:05

URL

https://www.us-cert.gov/ics/advisories/icsa-19-351-01

Text

This advisory contains mitigations for a cross-site scripting vulnerability in GE's S2020/S2020G Fast Switch 61850 Ethernet switches.

17.12.2019

https://www.us-cert.gov/ics/advisories/icsa-19-351-02

Siemens SPPA-T3000

Titel

Siemens SPPA-T3000

Veröffentlicht

17. Dezember 2019 16:00

URL

Text

This advisory contains mitigations for numerous vulnerabilities in Siemens' SPPA-T3000 servers.

Siemens SCALANCE W700 and W1700

Titel

Siemens SCALANCE W700 and W1700

Veröffentlicht

10. Dezember 2019 17:05

URL

https://www.us-cert.gov/ics/advisories/icsa-19-344-01

Text

This advisory contains mitigations for an improper enforcement of message integrity during transmission in a communication channel vulnerability in the Siemens SCALANCE W700 and W1700 wireless communication devices.

https://www.us-cert.gov/ics/advisories/icsa-19-344-02

Siemens SiNVR 3

Titel

Siemens SiNVR 3

Veröffentlicht

10. Dezember 2019 17:00

URL

Text

This advisory contains mitigations for cleartext storage of sensitive information in GUI, improper authentication, relative path traversal, missing authentication for critical function, weak cryptography for passwords, and exposed dangerous method or function vulnerabilities in the Siemens SiNVR 3 video management solution.

Siemens RUGGEDCOM ROS

Titel

Siemens RUGGEDCOM ROS

Veröffentlicht

10. Dezember 2019 16:55

URL

https://www.us-cert.gov/ics/advisories/icsa-19-344-03

Text

This advisory contains mitigations for improper restriction of operations within the bounds of a memory buffer and resource management errors vulnerabilities in the Siemens RUGGEDCOM ROS ethernet switch.

Siemens SIMATIC Products

Titel

Siemens SIMATIC Products

Veröffentlicht

10. Dezember 2019 16:50

URL

https://www.us-cert.gov/ics/advisories/icsa-19-344-04

Text

This advisory contains mitigations for an exposed dangerous method or function vulnerability in Siemens' SIMATIC products.

Siemens XHQ Operations Intelligence

Titel

Siemens XHQ Operations Intelligence

Veröffentlicht

10. Dezember 2019 16:45

URL

https://www.us-cert.gov/ics/advisories/icsa-19-344-05

Text

This advisory contains mitigations for cross-site request forgery, improper neutralization of script-related HTML tags in a web page, and improper input validation vulnerabilities in the Siemens XHQ Operations Intelligence products.

Siemens SIMATIC S7-1200 and S7-1500 CPU Families

Titel

Siemens SIMATIC S7-1200 and S7-1500 CPU Families

Veröffentlicht

10. Dezember 2019 16:40

URL

https://www.us-cert.gov/ics/advisories/icsa-19-344-06

Text

This advisory contains mitigations for a use of a broken or risky cryptographic algorithm, and missing support for integrity check vulnerabilities in the Siemens SIMATIC S7-1200 and S7-1500 CPU families.

Siemens S7-1200 and S7-200 SMART CPUs (Update A)

Titel

Siemens S7-1200 and S7-200 SMART CPUs (Update A)

Veröffentlicht

10. Dezember 2019 16:30

URL

https://www.us-cert.gov/ics/advisories/icsa-19-318-02

Text

This updated advisory is a follow-up to the original advisory titled ICSA-19-318-02 Siemens S7-1200 that was published November 14, 2019, on the ICS webpage on us-cert.gov. This advisory contains information and mitigation recommendations for an exposed dangerous method or function vulnerability in the Siemens S7-1200 and S7-200 SMART CPUs.

Interpeak IPnet TCP/IP Stack (Update B)

Titel

Interpeak IPnet TCP/IP Stack (Update B)

Veröffentlicht

10. Dezember 2019 16:25

URL

https://www.us-cert.gov/ics/advisories/icsa-19-274-01

Text

This updated advisory is a follow-up to the updated advisory titled ICSA-19-274-01 Interpeak IPnet TCP/IP Stack (Update A) that was published October 10, 2019, on the ICS webpage on us-cert.gov. This advisory contains mitigations for stack-based buffer overflow, heap-based buffer overflow, integer underflow, improper restriction of operations within the bounds ...

Siemens Industrial Products (Update C)

Titel

Siemens Industrial Products (Update C)

Veröffentlicht

10. Dezember 2019 16:20

URL

https://www.us-cert.gov/ics/advisories/icsa-19-253-03

Text

This updated advisory is a follow-up to the updated advisory titled ICSA-19-253-03 Siemens Industrial Products (Update B) that was published November 14, 2019, on the ICS webpage on us-cert.gov. This updated advisory includes mitigations for integer overflow or wraparound and uncontrolled resource consumption vulnerabilities reported in Siemens’ industrial products.

SSA-603476 (Last Update: 2019-12-10): Web Vulnerabilities in SIMATIC CP 343-1/CP 443-1 Modules and SIMATIC S7-300/S7-400 CPUs

Titel

SSA-603476 (Last Update: 2019-12-10): Web Vulnerabilities in SIMATIC CP 343-1/CP 443-1 Modules and SIMATIC S7-300/S7-400 CPUs

Veröffentlicht

10. Dezember 2019 01:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-603476.pdf

Text

SIMATIC CP 343-1 Advanced/CP-443-1 Advanced devices and SIMATIC S7-300/S7-400 CPUs are affected by two vulnerabilities. One of the vulnerabilities could allow remote attackers to perform operations as an authenticated user under certain conditions. Siemens has released updates for SIMATIC CP 343-1 Advanced and SIMATIC CP 443-1 Advanced devices. Siemens recommends ...

SSA-686531 (Last Update: 2019-12-10): Hardware based manufacturing access on S7-1200 and S7-200 SMART

Titel

SSA-686531 (Last Update: 2019-12-10): Hardware based manufacturing access on S7-1200 and S7-200 SMART

Veröffentlicht

10. Dezember 2019 01:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-686531.pdf

Text

There is an access mode used during manufacturing of SIMATIC S7-1200 and S7-200 SMART CPUs that allows additional diagnostic functionality. Using this functionality requires physical access to the UART interface during boot process. Siemens is working on a solution and recommends specific countermeasures until the solution is available.

SSA-899560 (Last Update: 2019-12-10): Vulnerabilities in SIPROTEC 5 relays and DIGSI 5

Titel

SSA-899560 (Last Update: 2019-12-10): Vulnerabilities in SIPROTEC 5 relays and DIGSI 5

Veröffentlicht

10. Dezember 2019 01:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-899560.pdf

Text

The SIPROTEC 5 relays and their corresponding engineering software DIGSI 5 are affected by two security vulnerabilities which could allow an attacker to upload or download files to the device or to conduct a Denial-of-Service attack over the network. Siemens has released updates for some affected products, is working on ...

SSA-632562 (Last Update: 2019-12-10): Vulnerabilities in SIPROTEC 5 Ethernet plug-in communication modules and devices

Titel

SSA-632562 (Last Update: 2019-12-10): Vulnerabilities in SIPROTEC 5 Ethernet plug-in communication modules and devices

Veröffentlicht

10. Dezember 2019 01:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-632562.pdf

Text

The SIPROTEC 5 Ethernet plug-in communication modules and devices are affected by multiple security vulnerabilities. These vulnerabilities could allow an attacker to leverage various attacks, e.g. to execute arbitrary code over the network. Eleven of these vulnerabilities affect the underlying Wind River VxWorks network stack and were recently patched by ...