Bulletins | CERT@VDE

Rockwell Automation Emulate3D

Titel

Rockwell Automation Emulate3D

Veröffentlicht

22. August 2024 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-235-01

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 5.4 ATTENTION: Exploitable locally Vendor: Rockwell Automation Equipment: Emulate3D Vulnerability: Externally Controlled Reference to a Resource in Another Sphere 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to perform remote code execution. 3. TECHNICAL DETAILS 3.1 AFFECTED PRODUCTS The ...

21.08.2024

BOSCH PSIRT

Unauthenticated information leak in Bosch IP cameras

Titel

Unauthenticated information leak in Bosch IP cameras

Veröffentlicht

21. August 2024 02:00

URL

https://psirt.bosch.com/security-advisories/bosch-sa-659648.html

Text

BOSCH-SA-659648: A vulnerability was discovered in internal testing of Bosch IP cameras of families CPP13 and CPP14, that allows an unauthenticated attacker to retrieve video analytics event data. No video data is leaked through this vulnerability.

20.08.2024

US CERT

Best Practices for Event Logging and Threat Detection

Titel

Best Practices for Event Logging and Threat Detection

Veröffentlicht

20. August 2024 18:35

URL

https://www.cisa.gov/news-events/cybersecurity-advisories/aa24-234a

Text

Executive Summary This publication defines a baseline for event logging best practices to mitigate cyber threats. It was developed by the Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) in cooperation with the following international partners: United States (US) Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of ...

PTC Kepware ThingWorx Kepware Server

Titel

PTC Kepware ThingWorx Kepware Server

Veröffentlicht

15. August 2024 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-228-11

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 5.9 ATTENTION: Exploitable from adjacent network. Vendor: PTC Equipment: Kepware ThingWorx Kepware Server Vulnerability: Allocation of Resources Without Limits or Throttling 2. RISK EVALUATION Successful exploitation of this vulnerability could crash the target device. 3. TECHNICAL DETAILS 3.1 AFFECTED PRODUCTS PTC reports that ...

AVEVA Historian Web Server

Titel

AVEVA Historian Web Server

Veröffentlicht

15. August 2024 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-228-10

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.5 ATTENTION: Exploitable remotely/low attack complexity Vendor: AVEVA Equipment: Historian Server Vulnerability: SQL Injection 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an authenticated user to get read and write access to the database. 3. TECHNICAL DETAILS 3.1 AFFECTED PRODUCTS The ...

https://www.cisa.gov/news-events/ics-advisories/icsa-24-228-02

Siemens INTRALOG WMS

Titel

Siemens INTRALOG WMS

Veröffentlicht

15. August 2024 14:00

URL

Text

As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories (CERT Services | Services | Siemens Global). View CSAF 1. EXECUTIVE SUMMARY ...

Siemens LOGO! V8.3 BM Devices

Titel

Siemens LOGO! V8.3 BM Devices

Veröffentlicht

15. August 2024 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-228-05

Text

Siemens Location Intelligence

Titel

Siemens Location Intelligence

Veröffentlicht

15. August 2024 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-228-07

Text

Siemens SCALANCE M-800, RUGGEDCOM RM1224

Titel

Siemens SCALANCE M-800, RUGGEDCOM RM1224

Veröffentlicht

15. August 2024 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-228-01

Text

Rockwell Automation Micro850/870

Titel

Rockwell Automation Micro850/870

Veröffentlicht

13. August 2024 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-226-07

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 6.9 ATTENTION: Exploitable remotely/low attack complexity Vendor: Rockwell Automation Equipment: Micro850/870 Vulnerability: Uncontrolled Resource Consumption 2. RISK EVALUATION Successful exploitation of this vulnerability may cause CIP/Modbus communication to be disrupted for short duration. 3. TECHNICAL DETAILS 3.1 AFFECTED PRODUCTS Rockwell Automation reports that ...

Rockwell Automation ControlLogix, GuardLogix 5580, CompactLogix, and Compact GuardLogix 5380

Titel

Rockwell Automation ControlLogix, GuardLogix 5580, CompactLogix, and Compact GuardLogix 5380

Veröffentlicht

13. August 2024 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-226-10

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.7 ATTENTION: Exploitable remotely/low attack complexity Vendor: Rockwell Automation Equipment: CompactLogix 5380, ControlLogix 5580, GuardLogix 5580, Compact GuardLogix 5380, CompactLogix 5480 Vulnerability: Improper Input Validation 2. RISK EVALUATION Successful exploitation of this vulnerability could crash the device being accessed. 3. TECHNICAL DETAILS 3.1 ...

Ocean Data Systems Dream Report

Titel

Ocean Data Systems Dream Report

Veröffentlicht

13. August 2024 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-226-08

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.5 ATTENTION: Exploitable remotely/low attack complexity Vendor: Ocean Data Systems Equipment: Dream Report 2023 Vulnerabilities: Path Traversal, Incorrect Permission Assignment for Critical Resource 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to perform remote code execution or escalate their ...

Rockwell Automation GuardLogix/ControlLogix 5580 Controller

Titel

Rockwell Automation GuardLogix/ControlLogix 5580 Controller

Veröffentlicht

13. August 2024 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-226-03

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.7 ATTENTION: Exploitable remotely/low attack complexity Vendor: Rockwell Automation Equipment: ControlLogix 5580, GuardLogix 5580 Vulnerability: Improper Check for Unusual or Exceptional Conditions 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to perform a denial-of-service on the device. 3. TECHNICAL ...

Rockwell Automation ControlLogix, GuardLogix 5580, CompactLogix, Compact GuardLogix 5380

Titel

Rockwell Automation ControlLogix, GuardLogix 5580, CompactLogix, Compact GuardLogix 5380

Veröffentlicht

13. August 2024 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-226-09

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.7 ATTENTION: Exploitable remotely/low attack complexity Vendor: Rockwell Automation Equipment: ControlLogix, GuardLogix 5580, CompactLogix, Compact GuardLogix 5380 Vulnerability: Improper Input Validation 2. RISK EVALUATION Successful exploitation of this vulnerability could allow and attacker to cause a denial-of-service condition. 3. TECHNICAL DETAILS 3.1 AFFECTED ...

Rockwell Automation AADvance Standalone OPC-DA Server

Titel

Rockwell Automation AADvance Standalone OPC-DA Server

Veröffentlicht

13. August 2024 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-226-02

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Rockwell Automation Equipment: AADvance Standalone OPC-DA Server Vulnerabilities: Improper Input Validation, Use of Externally Controlled Format String 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to execute arbitrary code in the affected ...

AVEVA SuiteLink Server

Titel

AVEVA SuiteLink Server

Veröffentlicht

13. August 2024 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-226-01

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.7 ATTENTION: Exploitable remotely/low attack complexity Vendor: AVEVA Equipment: SuiteLink Server Vulnerability: Allocation of Resources Without Limits or Throttling 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to cause the server to consume excessive system resources, preventing processing of ...

Rockwell Automation DataMosaix Private Cloud

Titel

Rockwell Automation DataMosaix Private Cloud

Veröffentlicht

13. August 2024 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-226-05

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.6 ATTENTION: Exploitable remotely/low attack complexity Vendor: Rockwell Automation Equipment: DataMosaix Private Cloud Vulnerability: Improper Authentication 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to generate cookies for a user ID without the use of a username or password, ...

SSA-180704 V1.1 (Last Update: 2024-08-13): Multiple Vulnerabilities in SCALANCE M-800 Family Before V8.0

Titel

SSA-180704 V1.1 (Last Update: 2024-08-13): Multiple Vulnerabilities in SCALANCE M-800 Family Before V8.0

Veröffentlicht

13. August 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-180704.html

Text

SCALANCE M-800 family before V8.0 is affected by multiple vulnerabilities. Siemens has released new versions for several affected products and recommends to update to the latest versions. Siemens recommends countermeasures for products where fixes are not, or not yet available.

SSA-981975 V1.3 (Last Update: 2024-08-13): Information Disclosure Vulnerability in Intel-CPUs (CVE-2022-40982) Impacting SIMATI...

Titel

SSA-981975 V1.3 (Last Update: 2024-08-13): Information Disclosure Vulnerability in Intel-CPUs (CVE-2022-40982) Impacting SIMATIC IPCs

Veröffentlicht

13. August 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-981975.html

Text

Several Intel-CPU based SIMATIC IPCs are affected by an information exposure vulnerability (CVE-2022-40982) in the CPU that could allow an authenticated local user to potentially read other users’ data [1]. The issue is also known as “Gather Data Sampling” (GDS) or Downfall Attacks. For details refer to the chapter “Additional ...

SSA-357412 V1.0: PRT File Parsing Vulnerability in NX Before V2406.3000

Titel

SSA-357412 V1.0: PRT File Parsing Vulnerability in NX Before V2406.3000

Veröffentlicht

13. August 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-357412.html

Text

NX (incl. NX student versions) before V2406.3000 contains an out-of-bounds read vulnerability that could be triggered when the application reads PRT files. If a user is tricked to open a malicious file using the affected application, this could lead to a crash, and potentially also to arbitrary code execution on ...

SSA-716317 V1.0: Multiple Vulnerability in SINEC Traffic Analyzer Before V2.0

Titel

SSA-716317 V1.0: Multiple Vulnerability in SINEC Traffic Analyzer Before V2.0

Veröffentlicht

13. August 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-716317.html

Text

SINEC Traffic Analyzer before V2.0 is affected by multiple vulnerabilities. Siemens has released a new version for SINEC Traffic Analyzer and recommends to update to the latest version.

SSA-921449 V1.0: Plaintext Storage of a Password Vulnerability in LOGO! V8.3 BM Devices

Titel

SSA-921449 V1.0: Plaintext Storage of a Password Vulnerability in LOGO! V8.3 BM Devices

Veröffentlicht

13. August 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-921449.html

Text

LOGO! V8.3 BM (incl. SIPLUS variants) devices contain a plaintext storage of a password vulnerability. This could allow an attacker with phyiscal access to an affected device to extract user-set passwords from an embedded storage IC. Siemens has released new hardware versions with the LOGO! V8.4 BM product family for ...

SSA-856475 V1.0: X_T File Parsing Vulnerabilities in Teamcenter Visualization and JT2Go

Titel

SSA-856475 V1.0: X_T File Parsing Vulnerabilities in Teamcenter Visualization and JT2Go

Veröffentlicht

13. August 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-856475.html

Text

Teamcenter Visualization and JT2Go are affected by out of bounds read and null pointer dereference vulnerabilities that could be triggered when the application reads files in X_T format. If a user is tricked to open a malicious file with the affected applications, an attacker could leverage the vulnerability to perform ...

SSA-116924 V1.2 (Last Update: 2024-08-13): Path Traversal Vulnerability in TIA Portal

Titel

SSA-116924 V1.2 (Last Update: 2024-08-13): Path Traversal Vulnerability in TIA Portal

Veröffentlicht

13. August 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-116924.html

Text

TIA Portal contains a path traversal vulnerability that could allow the creation or overwrite of arbitrary files in the engineering system. If the user is tricked to open a malicious PC system configuration file, an attacker could exploit this vulnerability to achieve arbitrary code execution. Siemens has released new versions ...