Bulletins | CERT@VDE

https://www.cisa.gov/news-events/ics-advisories/icsa-23-299-01

Dingtian DT-R002

Titel

Dingtian DT-R002

Veröffentlicht

26. Oktober 2023 14:00

URL

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 5.9 ATTENTION: Exploitable remotely/public exploits are available Vendor: Dingtian Equipment: DT-R002 Vulnerability: Authentication Bypass by Capture-Replay 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to bypass authentication. 3. TECHNICAL DETAILS 3.1 AFFECTED PRODUCTS The following versions of Dingtian DT-R002, ...

26.10.2023

Sielco Radio Link and Analog FM Transmitters

Titel

Sielco Radio Link and Analog FM Transmitters

Veröffentlicht

26. Oktober 2023 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-23-299-08

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity/public exploits are available Vendor: Sielco Equipment: Analog FM Transmitters and Radio Link Vulnerabilities: Improper Access Control, Cross-Site Request Forgery, Privilege Defined with Unsafe Actions 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to ...

25.10.2023

BOSCH PSIRT

Multiple vulnerabilities on ctrlX HMI Web Panel - WR21

Titel

Multiple vulnerabilities on ctrlX HMI Web Panel - WR21

Veröffentlicht

25. Oktober 2023 02:00

URL

https://psirt.bosch.com/security-advisories/bosch-sa-175607.html

Text

BOSCH-SA-175607: The operating system of the ctrlX WR21 HMI has several vulnerabilities when the Kiosk mode is used in conjunction with Google Chrome. In worst case, an attacker with physical access to the device might gain full root access without prior authentication by combining the exploitation of those vulnerabilities.Furthermore, the ...

24.10.2023

Rockwell Automation Stratix 5800 and Stratix 5200

Titel

Rockwell Automation Stratix 5800 and Stratix 5200

Veröffentlicht

24. Oktober 2023 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-23-297-01

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 10.0 ATTENTION: Exploitable remotely/low attack complexity/known public exploitation Vendor: Rockwell Automation Equipment: Stratix 5800 and Stratix 5200 Vulnerabilities: Unprotected Alternate Channel 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an unauthenticated attacker to take control of the affected system. 3. TECHNICAL ...

24.10.2023

BOSCH PSIRT

Vulnerability in SICK Flexi Soft Gateway

Titel

Vulnerability in SICK Flexi Soft Gateway

Veröffentlicht

24. Oktober 2023 02:00

URL

https://psirt.bosch.com/security-advisories/bosch-sa-164691.html

Text

BOSCH-SA-164691: The SLC-0-GPNT00300 from Bosch Rexroth contains technology from SICK AG. The manufacturer has published a security bulletin \[1\] regarding an authentication bypass by capture-replay. Exploiting the vulnerability would allow an unauthenticated attacker to login to the gateways by sending specially crafted packets and potentially impact the availability, integrity and ...

20.10.2023

BOSCH PSIRT

Multiple vulnerabilities in ctrlX WR21 HMI

Titel

Multiple vulnerabilities in ctrlX WR21 HMI

Veröffentlicht

20. Oktober 2023 02:00

URL

https://psirt.bosch.com/security-advisories/bosch-sa-175607.html

Text

17.10.2023

Schneider Electric EcoStruxure Power Monitoring Expert and Power Operation Products

Titel

Schneider Electric EcoStruxure Power Monitoring Expert and Power Operation Products

Veröffentlicht

17. Oktober 2023 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-23-290-01

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Schneider Electric Equipment: EcoStruxure Power Monitoring Expert, EcoStruxure Power Operation with Advanced Reports, EcoStruxure Power SCADA Operation with Advanced Reports Vulnerability: Deserialization of Untrusted Data 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an ...

13.10.2023

US CERT

Threat Actors Exploit Atlassian Confluence CVE-2023-22515 for Initial Access to Networks

Titel

Threat Actors Exploit Atlassian Confluence CVE-2023-22515 for Initial Access to Networks

Veröffentlicht

13. Oktober 2023 22:48

URL

https://www.cisa.gov/news-events/cybersecurity-advisories/aa23-289a

Text

SUMMARY The Cybersecurity and Infrastructure Security Agency (CISA), Federal Bureau of Investigation (FBI), and Multi-State Information Sharing and Analysis Center (MS-ISAC) are releasing this joint Cybersecurity Advisory (CSA) in response to the active exploitation of CVE-2023-22515. This recently disclosed vulnerability affects certain versions of Atlassian Confluence Data Center and Server, ...

Siemens SICAM PAS/PQS

Titel

Siemens SICAM PAS/PQS

Veröffentlicht

12. Oktober 2023 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-23-285-06

Text

As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories (CERT Services | Services | Siemens Global). View CSAF 1. EXECUTIVE SUMMARY ...

Hikvision Access Control and Intercom Products

Titel

Hikvision Access Control and Intercom Products

Veröffentlicht

12. Oktober 2023 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-23-285-14

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely Vendor: Hikvision Equipment: Access Control and Intercom Products Vulnerabilities: Session Fixation, Improper Access Control 2. RISK EVALUATION Successful exploitation of these vulnerabilities could result in an attacker hijacking a session and gaining device operation permissions or result in an ...

Weintek cMT3000 HMI Web CGI

Titel

Weintek cMT3000 HMI Web CGI

Veröffentlicht

12. Oktober 2023 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-23-285-12

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Weintek Equipment: cMT3000 CMI Web CGI Vulnerabilities: Stack-based Buffer Overflow, OS Command Injection 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to hijack control flow and bypass login authentication or execute arbitrary ...

Siemens Mendix Forgot Password Module

Titel

Siemens Mendix Forgot Password Module

Veröffentlicht

12. Oktober 2023 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-23-285-11

Text

Siemens Simcenter Amesim

Titel

Siemens Simcenter Amesim

Veröffentlicht

12. Oktober 2023 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-23-285-05

Text

#StopRansomware: AvosLocker Ransomware (Update)

US CERT

Titel

#StopRansomware: AvosLocker Ransomware (Update)

Veröffentlicht

10. Oktober 2023 17:46

URL

https://www.cisa.gov/news-events/cybersecurity-advisories/aa23-284a

Text

SUMMARY Note: This joint Cybersecurity Advisory (CSA) is part of an ongoing #StopRansomware effort to publish advisories for network defenders that detail various ransomware variants and ransomware threat actors. These #StopRansomware advisories include recently and historically observed tactics, techniques, and procedures (TTPs) and indicators of compromise (IOCs) to help organizations ...

SSB-439005 V5.6 (Last Update: 2023-10-10): Vulnerabilities in the additional GNU/Linux subsystem of the SIMATIC S7-1500 CPU 151...

Titel

SSB-439005 V5.6 (Last Update: 2023-10-10): Vulnerabilities in the additional GNU/Linux subsystem of the SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP

Veröffentlicht

10. Oktober 2023 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssb-439005.html

Text

SSA-386812 V1.0: Remote Code Execution Vulnerability in Simcenter Amesim before V2021.1

Titel

SSA-386812 V1.0: Remote Code Execution Vulnerability in Simcenter Amesim before V2021.1

Veröffentlicht

10. Oktober 2023 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-386812.html

Text

Simcenter Amesim contains a vulnerable SOAP endpoint that could allow an unauthenticated remote attacker to perform DLL injection and execute arbitrary code in the context of the affected application process. Siemens has released an update for Simcenter Amesim and recommends to update to the latest version.

SSA-363107 V1.3 (Last Update: 2023-10-10): An Improper Initialization Vulnerability Affects SIMATIC WinCC Kiosk Mode

Titel

SSA-363107 V1.3 (Last Update: 2023-10-10): An Improper Initialization Vulnerability Affects SIMATIC WinCC Kiosk Mode

Veröffentlicht

10. Oktober 2023 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-363107.html

Text

A vulnerability was found in SIMATIC WinCC that could allow authenticated attackers to escape the Kiosk Mode. Siemens has released updates for the affected products and recommends to update to the latest versions.

SSA-295483 V1.0: User Enumeration Vulnerability in Mendix Forgot Password Module

Titel

SSA-295483 V1.0: User Enumeration Vulnerability in Mendix Forgot Password Module

Veröffentlicht

10. Oktober 2023 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-295483.html

Text

The Mendix Forgot Password module contains a user enumeration vulnerability that could allow an attacker to retrieve valid users. Siemens has released updates for the affected products and recommends to update to the latest versions.

SSA-285795 V1.4 (Last Update: 2023-10-10): Denial of Service in OPC-UA in Industrial Products

Titel

SSA-285795 V1.4 (Last Update: 2023-10-10): Denial of Service in OPC-UA in Industrial Products

Veröffentlicht

10. Oktober 2023 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-285795.html

Text

A vulnerability in the underlying third party component OPC UA ANSIC Stack (also called Legacy C-Stack) affects several industrial products. The vulnerability could cause a crash of the component that includes the vulnerable part of the stack. Siemens has released updates for the affected products and recommends to update to ...

SSA-594373 V1.0: Cross-Site-Scripting (XSS) Vulnerability in SINEMA Server V14

Titel

SSA-594373 V1.0: Cross-Site-Scripting (XSS) Vulnerability in SINEMA Server V14

Veröffentlicht

10. Oktober 2023 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-594373.html

Text

SINEMA Server V14 improperly sanitizes certain SNMP configuration data retrieved from monitored devices. An attacker with access to a monitored device could perform a stored cross-site scripting (XSS) attack that may lead to arbitrary code execution with SYSTEM privileges on the application server. Siemens recommends to migrate to its successor ...

SSA-413565 V1.3 (Last Update: 2023-10-10): Multiple Vulnerabilities in SCALANCE Products

Titel

SSA-413565 V1.3 (Last Update: 2023-10-10): Multiple Vulnerabilities in SCALANCE Products

Veröffentlicht

10. Oktober 2023 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-413565.html

Text

Multiple SCALANCE devices are affected by several vulnerabilities that could allow an attacker to inject code, retrieve data as debug information as well as user CLI passwords or set the CLI to an irresponsive state. Siemens has released updates for the affected products and recommends to update to the latest ...

SSA-516174 V1.1 (Last Update: 2023-10-10): Wi-Fi Encryption Bypass Vulnerabilities in SCALANCE W1750D

Titel

SSA-516174 V1.1 (Last Update: 2023-10-10): Wi-Fi Encryption Bypass Vulnerabilities in SCALANCE W1750D

Veröffentlicht

10. Oktober 2023 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-516174.html

Text

The SCALANCE W1750D device is affected by Wi-Fi encryption bypass vulnerabilities (“Framing Frames”) that could allow an attacker to disclose sensitive information or to steal the victims session. Siemens has released updates for the affected products and recommends to update to the latest versions.

SSA-250085 V1.3 (Last Update: 2023-10-10): Multiple Vulnerabilities in SINEC NMS and SINEMA Server

Titel

SSA-250085 V1.3 (Last Update: 2023-10-10): Multiple Vulnerabilities in SINEC NMS and SINEMA Server

Veröffentlicht

10. Oktober 2023 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-250085.html

Text

SINEC NMS and SINEMA Server V14 contain multiple vulnerabilities that could allow an attacker to execute arbitrary code on the system, arbitrary commands on the local database or achieve privilege escalation. Siemens has released several updates for SINEC NMS and recommends to update to the latest version. Siemens recommends specific ...

SSA-240541 V1.1 (Last Update: 2023-10-10): WIBU Systems CodeMeter Heap Buffer Overflow Vulnerability in Industrial Products

Titel

SSA-240541 V1.1 (Last Update: 2023-10-10): WIBU Systems CodeMeter Heap Buffer Overflow Vulnerability in Industrial Products

Veröffentlicht

10. Oktober 2023 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-240541.html

Text

WIBU Systems published information about a heap buffer overflow vulnerability and associated fix releases of CodeMeter Runtime, a product provided by WIBU Systems and used in several Siemens industrial products for license management. The vulnerability is described in the section “Vulnerability Classification” below and got assigned the CVE ID CVE-2023-3935. ...