Bulletins | CERT@VDE

SSA-364175 V1.1 (Last Update: 2024-08-13): Multiple Vulnerabilities in Palo Alto Networks Virtual NGFW on RUGGEDCOM APE1808 Dev...

Titel

SSA-364175 V1.1 (Last Update: 2024-08-13): Multiple Vulnerabilities in Palo Alto Networks Virtual NGFW on RUGGEDCOM APE1808 Devices

Veröffentlicht

13. August 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-364175.html

Text

Palo Alto Networks has published [1] information on vulnerabilities in PAN-OS. This advisory lists the related Siemens Industrial products affected by these vulnerabilities. Siemens is preparing updates and recommends specific countermeasures for products where updates are not, or not yet available. Customers are advised to consult and implement the workarounds ...

SSA-417547 V1.0: Multiple Vulnerabilities in INTRALOG WMS Before V4

Titel

SSA-417547 V1.0: Multiple Vulnerabilities in INTRALOG WMS Before V4

Veröffentlicht

13. August 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-417547.html

Text

INTRALOG WMS before V4 is affected by vulnerabilities in the SQL Client-Server communication and in the .NET framework. Successful exploitation could allow an unauthenticated attacker located in the INTRALOG WMS network to decrypt and modify client-server communication, or potentially execute arbitrary code on the application servers. Siemens has released a ...

SSA-659443 V1.0: Local Code Execution Vulnerabilities in COMOS Before V10.5

Titel

SSA-659443 V1.0: Local Code Execution Vulnerabilities in COMOS Before V10.5

Veröffentlicht

13. August 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-659443.html

Text

COMOS before V10.5 is affected by two local code execution vulnerabilities in the integrated Open Design Alliance Drawings SDK. Siemens has released a new version for COMOS and recommends to update to the latest version.

SSA-625850 V1.1 (Last Update: 2024-08-13): Multiple WIBU Systems CodeMeter Vulnerabilities Affecting the Desigo CC Product Fami...

Titel

SSA-625850 V1.1 (Last Update: 2024-08-13): Multiple WIBU Systems CodeMeter Vulnerabilities Affecting the Desigo CC Product Family and SENTRON powermanager

Veröffentlicht

13. August 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-625850.html

Text

Versions V5.0 through V7 of the Desigo CC product family (Desigo CC, Desigo CC Compact, Desigo CC Connect, Cerberus DMS), as well as the Desigo CC-based SENTRON powermanager, are affected by multiple vulnerabilities in the underlying third-party component WIBU Systems CodeMeter Runtime. Successful exploitation of these vulnerabilities could allow remote ...

SSA-640968 V1.2 (Last Update: 2024-08-13): Untrusted Search Path Vulnerability in TIA Project-Server formerly known as TIA Mult...

Titel

SSA-640968 V1.2 (Last Update: 2024-08-13): Untrusted Search Path Vulnerability in TIA Project-Server formerly known as TIA Multiuser Server

Veröffentlicht

13. August 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-640968.html

Text

TIA Project-Server formerly known as TIA Multiuser Server contains an untrusted search path vulnerability that could allow an attacker to escalate privileges, when tricking a legitimate user to start the service from an attacker controlled path. Siemens has released updates for several affected products and recommends to update to the ...

SSA-981975 V1.3 (Last Update: 2024-08-13): Information Disclosure Vulnerability in Intel-CPUs (CVE-2022-40982) Impacting SIMATI...

Titel

SSA-981975 V1.3 (Last Update: 2024-08-13): Information Disclosure Vulnerability in Intel-CPUs (CVE-2022-40982) Impacting SIMATIC IPCs

Veröffentlicht

13. August 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-981975.html

Text

Several Intel-CPU based SIMATIC IPCs are affected by an information exposure vulnerability (CVE-2022-40982) in the CPU that could allow an authenticated local user to potentially read other users’ data [1]. The issue is also known as “Gather Data Sampling” (GDS) or Downfall Attacks. For details refer to the chapter “Additional ...

SSA-407785 V1.3 (Last Update: 2024-08-13): Multiple X_T File Parsing Vulnerabilities in Parasolid and Teamcenter Visualization

Titel

SSA-407785 V1.3 (Last Update: 2024-08-13): Multiple X_T File Parsing Vulnerabilities in Parasolid and Teamcenter Visualization

Veröffentlicht

13. August 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-407785.html

Text

Parasolid and Teamcenter Visualization are affected by memory corruption vulnerabilities that could be triggered when the application reads files in X_T format. If a user is tricked to open a malicious file with the affected applications, an attacker could leverage the vulnerability to perform remote code execution or denial of ...

SSA-813746 V1.1 (Last Update: 2024-08-13): BadAlloc Vulnerabilities in SCALANCE X-200, X-200IRT, and X-300 Switch Families

Titel

SSA-813746 V1.1 (Last Update: 2024-08-13): BadAlloc Vulnerabilities in SCALANCE X-200, X-200IRT, and X-300 Switch Families

Veröffentlicht

13. August 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-813746.html

Text

Siemens has released a new firmware version for SCALANCE X-200 and X-200 IRT switches that address Bad Alloc vulnerabilities in the underlying operating system and recommends to update to the latest versions. Siemens recommends countermeasures for products where updates are not, or not yet available.

SSA-720392 V1.0: Multiple Vulnerabilities in Third-Party Components in Location Intelligence Before V4.4

Titel

SSA-720392 V1.0: Multiple Vulnerabilities in Third-Party Components in Location Intelligence Before V4.4

Veröffentlicht

13. August 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-720392.html

Text

Location Intelligence before V4.4 is affected by multiple vulnerabilities that could allow an attacker in an on-path position to read and modify data passed over the connection between legitimate clients and the affected product or brute force user passwords. Siemens has released a new version for Location Intelligence family and ...

12.08.2024

US CERT

CISA Adds Six Known Exploited Vulnerabilities to Catalog

Titel

CISA Adds Six Known Exploited Vulnerabilities to Catalog

Veröffentlicht

12. August 2024 19:38

URL

https://www.cisa.gov/news-events/alerts/2024/08/13/cisa-adds-six-known-exploited-vulnerabilities-catalog

Text

CISA has added six new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2024-38189 Microsoft Project Remote Code Execution Vulnerability CVE-2024-38178 Microsoft Windows Scripting Engine Memory Corruption Vulnerability CVE-2024-38213 Microsoft Windows SmartScreen Security Feature Bypass Vulnerability CVE-2024-38193 Microsoft Windows Ancillary Function Driver for WinSock Privilege ...

08.08.2024

Dorsett Controls InfoScan

Titel

Dorsett Controls InfoScan

Veröffentlicht

8. August 2024 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-221-01

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 6.9 ATTENTION: Exploitable remotely/low attack complexity Vendor: Dorsett Controls Equipment: InfoScan Vulnerabilities: Exposure of Sensitive Information To An Unauthorized Actor, Path Traversal 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to expose sensitive information, resulting in data theft and ...

07.08.2024

BOSCH PSIRT

Multiple Curl vulnerabilities in the Git for Windows component of Bosch DIVAR IP all-in-one Devices

Titel

Multiple Curl vulnerabilities in the Git for Windows component of Bosch DIVAR IP all-in-one Devices

Veröffentlicht

7. August 2024 02:00

URL

https://psirt.bosch.com/security-advisories/bosch-sa-587194-bt.html

Text

BOSCH-SA-587194-BT: DIVAR IP System Manager is a central user interface that provides an easy system setup, configuration and application software upgrades through an easily accessible web-based application. Multiple Curl vulnerabilities in the Git for Windows component have been discovered in DIVAR IP System Manager versions prior to 2.3.2, affecting several ...

02.08.2024

US CERT

Enhancing Cyber Resilience: Insights from CISA Red Team Assessment of a US Critical Infrastructure Sector Organization

Titel

Enhancing Cyber Resilience: Insights from CISA Red Team Assessment of a US Critical Infrastructure Sector Organization

Veröffentlicht

2. August 2024 19:17

URL

https://www.cisa.gov/news-events/cybersecurity-advisories/aa24-326a

Text

EXECUTIVE SUMMARY The Cybersecurity and Infrastructure Security Agency (CISA) conducted a red team assessment (RTA) at the request of a critical infrastructure organization. During RTAs, CISA’s red team simulates real-world malicious cyber operations to assess an organization’s cybersecurity detection and response capabilities. In coordination with the assessed organization, CISA is ...

02.08.2024

SSA-857368 V1.0: Multiple Vulnerabilities in Omnivise T3000

Titel

SSA-857368 V1.0: Multiple Vulnerabilities in Omnivise T3000

Veröffentlicht

2. August 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-857368.html

Text

Omnivise T3000 contains multiple vulnerabilities that could allow an attacker to escalate privileges. Siemens Energy has released patches for several affected products and recommends to apply the patches. Siemens Energy is preparing further fixes for versions still under maintenance and recommends countermeasures for products where fixes are not, or not ...

Johnson Controls exacqVision Server Web Service

Titel

Johnson Controls exacqVision Server Web Service

Veröffentlicht

1. August 2024 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-214-02

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 7.6 ATTENTION: Exploitable remotely Vendor: Johnson Controls Inc. Equipment: exacqVision Web Service Vulnerability: Permissive Cross-domain Policy with Untrusted Domains 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to send an unauthorized request or access data from an untrusted domain. ...

https://www.cisa.gov/news-events/ics-advisories/icsa-24-214-07

AVTECH IP Camera

Titel

AVTECH IP Camera

Veröffentlicht

1. August 2024 14:00

URL

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 9.3 ATTENTION: Exploitable remotely/low attack complexity/public exploits are available/known public exploitation Vendor: AVTECH SECURITY Corporation Equipment: IP camera Vulnerability: Command Injection 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to inject and execute commands as the owner of the ...

Johnson Controls exacqVision Client and exacqVision Server

Titel

Johnson Controls exacqVision Client and exacqVision Server

Veröffentlicht

1. August 2024 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-214-01

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 9.0 ATTENTION: Exploitable remotely Vendor: Johnson Controls Inc. Equipment: exacqVision Client, exacqVision Server key Vulnerability: Inadequate Encryption Strength 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to be able to decrypt communications between exacqVision Server and exacqVision Client due ...

Johnson Controls exacqVision Web Service

Titel

Johnson Controls exacqVision Web Service

Veröffentlicht

1. August 2024 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-214-04

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 6.4 ATTENTION: Exploitable remotely Vendor: Johnson Controls, Inc. Equipment: exacqVision Web Service Vulnerability: Cleartext Transmission of Sensitive Information 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to perform a man-in-the-middle attack and gain access to sensitive information. 3. TECHNICAL ...

https://www.cisa.gov/news-events/ics-advisories/icsa-24-214-08

Vonets WiFi Bridges

Titel

Vonets WiFi Bridges

Veröffentlicht

1. August 2024 14:00

URL

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 10.0 ATTENTION: Exploitable remotely/low attack complexity Vendor: Vonets Equipment: VAR1200-H, VAR1200-L, VAR600-H, VAP11AC, VAP11G-500S, VBG1200, VAP11S-5G, VAP11S, VAR11N-300, VAP11G-300, VAP11N-300, VAP11G, VAP11G-500, VBG1200, VAP11AC, VGA-1000 Vulnerabilities: Use of Hard-coded Credentials, Improper Access Control, Path Traversal, Command Injection, Improper Check or Handling of Exceptional ...

Juli 2024

25.07.2024

Positron Broadcast Signal Processor

Titel

Positron Broadcast Signal Processor

Veröffentlicht

25. Juli 2024 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-207-02

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.7 ATTENTION: Exploitable remotely/low attack complexity/public exploits are available Vendor: Positron S.R.L Equipment: Broadcast Signal Processor TRA7005 Vulnerability: Authentication Bypass Using an Alternate Path or Channel 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to bypass authentication and access ...

24.07.2024

US CERT

North Korea Cyber Group Conducts Global Espionage Campaign to Advance Regime’s Military and Nuclear Programs

Titel

North Korea Cyber Group Conducts Global Espionage Campaign to Advance Regime’s Military and Nuclear Programs

Veröffentlicht

24. Juli 2024 18:37

URL

https://www.cisa.gov/news-events/cybersecurity-advisories/aa24-207a

Text

Summary The U.S. Federal Bureau of Investigation (FBI) and the following authoring partners are releasing this Cybersecurity Advisory to highlight cyber espionage activity associated with the Democratic People’s Republic of Korea (DPRK)’s Reconnaissance General Bureau (RGB) 3rd Bureau based in Pyongyang and Sinuiju: U.S. Cyber National Mission Force (CNMF) U.S. ...

23.07.2024

National Instruments LabVIEW

Titel

National Instruments LabVIEW

Veröffentlicht

23. Juli 2024 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-205-03

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.4 ATTENTION: Low attack complexity Vendor: National Instruments Equipment: LabVIEW Vulnerabilities: Out-of-Bounds Read, Improper Restriction of Operations within the Bounds of a Memory Buffer 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow a local attacker to disclose information and execute arbitrary ...

23.07.2024

National Instruments IO Trace

Titel

National Instruments IO Trace

Veröffentlicht

23. Juli 2024 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-205-01

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.4 ATTENTION: Low attack complexity Vendor: National Instruments Equipment: IO Trace Vulnerability: Stack-Based Buffer Overflow 2. RISK EVALUATION Successful exploitation of this vulnerability could allow a local attacker to execute arbitrary code. 3. TECHNICAL DETAILS 3.1 AFFECTED PRODUCTS The following National Instruments I/O ...

23.07.2024

Hitachi Energy AFS/AFR Series Products

Titel

Hitachi Energy AFS/AFR Series Products

Veröffentlicht

23. Juli 2024 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-205-02

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/low attack complexity Vendor: Hitachi Energy Equipment: AFS650, AFS660, AFS665, AFS670, AFS675, AFS677, AFR677 Vulnerabilities: Type Confusion, Use After Free, Double Free, Observable Discrepancy 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to create a denial-of-service ...

22.07.2024