Bulletins | CERT@VDE

Siemens SENTRON PAC3200 Devices

Titel

Siemens SENTRON PAC3200 Devices

Veröffentlicht

10. Oktober 2024 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-284-04

Text

As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories (CERT Services | Services | Siemens Global). View CSAF 1. EXECUTIVE SUMMARY ...

Rockwell Automation PowerFlex 6000T

Titel

Rockwell Automation PowerFlex 6000T

Veröffentlicht

10. Oktober 2024 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-284-19

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.2 ATTENTION: Exploitable remotely/low attack complexity Vendor: Rockwell Automation Equipment: PowerFlex 6000T Vulnerability: Improper Check for Unusual or Exceptional Conditions 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to cause a denial-of-service condition. 3. TECHNICAL DETAILS 3.1 AFFECTED PRODUCTS ...

https://www.cisa.gov/news-events/ics-advisories/icsa-24-284-07

Siemens JT2Go

Titel

Siemens JT2Go

Veröffentlicht

10. Oktober 2024 14:00

URL

Text

Siemens SIMATIC S7-1500 CPUs

Titel

Siemens SIMATIC S7-1500 CPUs

Veröffentlicht

10. Oktober 2024 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-284-10

Text

Rockwell Automation ControlLogix

Titel

Rockwell Automation ControlLogix

Veröffentlicht

10. Oktober 2024 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-284-20

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.7 ATTENTION: Exploitable remotely/low attack complexity Vendor: Rockwell Automation Equipment: ControlLogix Vulnerability: Improper Input Validation 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to send a specially crafted CIP message and cause a denial-of-service condition on the affected device. ...

Siemens SINEC Security Monitor

Titel

Siemens SINEC Security Monitor

Veröffentlicht

10. Oktober 2024 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-284-06

Text

https://www.cisa.gov/news-events/ics-advisories/icsa-24-284-09

Siemens PSS SINCAL

Titel

Siemens PSS SINCAL

Veröffentlicht

10. Oktober 2024 14:00

URL

Text

Siemens Sentron Powercenter 1000

Titel

Siemens Sentron Powercenter 1000

Veröffentlicht

10. Oktober 2024 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-284-12

Text

Siemens HiMed Cockpit

Titel

Siemens HiMed Cockpit

Veröffentlicht

10. Oktober 2024 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-284-08

Text

Rockwell Automation Verve Asset Manager

Titel

Rockwell Automation Verve Asset Manager

Veröffentlicht

10. Oktober 2024 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-284-17

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.4 ATTENTION: Exploitable remotely/low attack complexity Vendor: Rockwell Automation Equipment: Verve Asset Manager Vulnerability: Placement of User into Incorrect Group 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an unauthorized user to access previous data they should no longer have access ...

Siemens SIMATIC S7-1500 and S7-1200 CPUs

Titel

Siemens SIMATIC S7-1500 and S7-1200 CPUs

Veröffentlicht

10. Oktober 2024 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-284-01

Text

SSA-097435 V1.3 (Last Update: 2024-10-10): Usernames Disclosure Vulnerability in Mendix Runtime

Titel

SSA-097435 V1.3 (Last Update: 2024-10-10): Usernames Disclosure Vulnerability in Mendix Runtime

Veröffentlicht

10. Oktober 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-097435.html

Text

Mendix Runtime contains an observable response discrepancy vulnerability when validating usernames during authentication. This could allow unauthenticated remote attackers to distinguish between valid and invalid usernames. Siemens has released a new version for Mendix Runtime V8 and recommends to update to the latest version. Siemens is preparing further fix versions ...

SSA-438590 V1.0: Buffer Overflow Vulnerability in Siveillance Video Camera Drivers

Titel

SSA-438590 V1.0: Buffer Overflow Vulnerability in Siveillance Video Camera Drivers

Veröffentlicht

10. Oktober 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-438590.html

Text

Several camera device drivers in the Siveillance Video Device Pack contain a buffer overflow vulnerability that could be exploited under strict conditions. This could allow an attacker to execute code with the permissions of the Recording Server user. Siemens has released an update of the Device Pack recommends to apply ...

Microsoft Releases October 2024 Security Updates

US CERT

Titel

Microsoft Releases October 2024 Security Updates

Veröffentlicht

8. Oktober 2024 20:41

URL

https://www.cisa.gov/news-events/alerts/2024/10/08/microsoft-releases-october-2024-security-updates

Text

Microsoft released security updates to address vulnerabilities in multiple products. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the following and apply necessary updates: Microsoft Security Update Guide for October

SSA-054046 V1.0: Unauthenticated Information Disclosure in Web Server of SIMATIC S7-1500 CPUs

Titel

SSA-054046 V1.0: Unauthenticated Information Disclosure in Web Server of SIMATIC S7-1500 CPUs

Veröffentlicht

8. Oktober 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-054046.html

Text

Several SIMATIC S7-1500 CPU versions are affected by an authentication bypass vulnerability that could allow an unauthenticated remote attacker to gain knowledge about actual and configured maximum cycle times and communication load of the CPU. Siemens has released new versions for several affected products and recommends to update to the ...

SSA-148641 V1.3 (Last Update: 2024-10-08): XPath Constraint Vulnerability in Mendix Runtime

Titel

SSA-148641 V1.3 (Last Update: 2024-10-08): XPath Constraint Vulnerability in Mendix Runtime

Veröffentlicht

8. Oktober 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-148641.html

Text

A XPath Constraint vulnerability in the Mendix Runtime was discovered, that can affect the running applications. The vulnerability could allow a malicious user to deduce contents of inaccessible attributes and modify sensitive data. Siemens has released new versions for the affected products and recommends to update to the latest versions.

SSA-097435 V1.2 (Last Update: 2024-10-08): Usernames Disclosure Vulnerability in Mendix Runtime

Titel

SSA-097435 V1.2 (Last Update: 2024-10-08): Usernames Disclosure Vulnerability in Mendix Runtime

Veröffentlicht

8. Oktober 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-097435.html

Text

Mendix Runtime contains an observable response discrepancy vulnerability when validating usernames during authentication. This could allow unauthenticated remote attackers to distinguish between valid and invalid usernames. Siemens has released new versions for the affected products and recommends to update to the latest versions.

SSA-039007 V1.1 (Last Update: 2024-10-08): Heap-based Buffer Overflow Vulnerability in User Management Component (UMC)

Titel

SSA-039007 V1.1 (Last Update: 2024-10-08): Heap-based Buffer Overflow Vulnerability in User Management Component (UMC)

Veröffentlicht

8. Oktober 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-039007.html

Text

Siemens User Management Component (UMC) is affected by a heap-based buffer overflow vulnerability which could allow an unauthenticated remote attacker arbitrary code execution. Siemens has released new versions for several affected products and recommends to update to the latest versions. Siemens is preparing further fix versions and recommends countermeasures for ...

SSA-254396 V1.0: Vulnerability in Nozomi Guardian/CMC Before 24.3.1 on RUGGEDCOM APE1808 Devices

Titel

SSA-254396 V1.0: Vulnerability in Nozomi Guardian/CMC Before 24.3.1 on RUGGEDCOM APE1808 Devices

Veröffentlicht

8. Oktober 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-254396.html

Text

Nozomi Networks has published information on vulnerabilities in Nozomi Guardian/CMC before 24.2.0. This advisory lists the related Siemens Industrial products affected by these vulnerabilities. Siemens has released new versions for the affected products and recommends to update to the latest versions.

SSA-955858 V1.3 (Last Update: 2024-10-08): Multiple Vulnerabilities in LOGO! 8 BM Devices

Titel

SSA-955858 V1.3 (Last Update: 2024-10-08): Multiple Vulnerabilities in LOGO! 8 BM Devices

Veröffentlicht

8. Oktober 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-955858.html

Text

LOGO! 8 BM (incl. SIPLUS variants) contains multiple web-related vulnerabilities. These could allow an attacker to execute code remotely, put the device into a denial of service state or retrieve parts of the memory. The vulnerabilities are related to the hardware of the product. Siemens has released new hardware versions ...

SSA-921449 V1.2 (Last Update: 2024-10-08): Plaintext Storage of a Password Vulnerability in LOGO! V8.3 BM Devices

Titel

SSA-921449 V1.2 (Last Update: 2024-10-08): Plaintext Storage of a Password Vulnerability in LOGO! V8.3 BM Devices

Veröffentlicht

8. Oktober 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-921449.html

Text

LOGO! V8.3 BM (incl. SIPLUS variants) devices contain a plaintext storage of a password vulnerability. This could allow an attacker with phyiscal access to an affected device to extract user-set passwords from an embedded storage IC. Siemens has released new hardware versions with the LOGO! V8.4 BM and the SIPLUS ...

SSA-876787 V1.0: Open Redirect Vulnerability in SIMATIC S7-1500 and S7-1200 CPUs

Titel

SSA-876787 V1.0: Open Redirect Vulnerability in SIMATIC S7-1500 and S7-1200 CPUs

Veröffentlicht

8. Oktober 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-876787.html

Text

Several SIMATIC S7-1500 and S7-1200 CPU versions are affected by an open redirect vulnerability that could allow an attacker to make the web server of affected devices redirect a legitimate user to an attacker-chosen URL. For a successful attack, the legitimate user must actively click on an attacker-crafted link. Siemens ...

SSA-850560 V1.0: Use of 4-Digit PIN in SENTRON PAC3200 Devices

Titel

SSA-850560 V1.0: Use of 4-Digit PIN in SENTRON PAC3200 Devices

Veröffentlicht

8. Oktober 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-850560.html

Text

SENTRON PAC3200 only provide a 4-digit PIN to protect from administrative access via Modbus TCP interface. Attackers with access to the Modbus TCP interface could easily bypass this protection by brute-force attacks or by monitoring the Modbus cleartext communication. Siemens recommends specific countermeasures for products where fixes are not, or ...

SSA-852501 V1.0: Multiple Memory Corruption Vulnerabilities in Simcenter Nastran Before 2406.5000

Titel

SSA-852501 V1.0: Multiple Memory Corruption Vulnerabilities in Simcenter Nastran Before 2406.5000

Veröffentlicht

8. Oktober 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-852501.html

Text

Simcenter Nastran contains multiple memory corruption vulnerabilities that could be triggered when the application reads files in BDF file formats. If a user is tricked to open a malicious file with any of the affected products, this could lead the application to crash or potentially lead to arbitrary code execution. ...