Bulletins | CERT@VDE

SSA-626178 V1.0: Stack-Based Buffer Overflow Vulnerability in JT2Go Before V2406.0003

Titel

SSA-626178 V1.0: Stack-Based Buffer Overflow Vulnerability in JT2Go Before V2406.0003

Veröffentlicht

8. Oktober 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-626178.html

Text

Siemens JT2Go is affected by a stack-based buffer overflow vulnerability that could be triggered when the application reads files in PDF format. If a user is tricked to open a malicious file with any of the affected products, this could lead the application to crash or potentially lead to arbitrary ...

SSA-852501 V1.0: Multiple Memory Corruption Vulnerabilities in Simcenter Nastran Before 2406.5000

Titel

SSA-852501 V1.0: Multiple Memory Corruption Vulnerabilities in Simcenter Nastran Before 2406.5000

Veröffentlicht

8. Oktober 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-852501.html

Text

Simcenter Nastran contains multiple memory corruption vulnerabilities that could be triggered when the application reads files in BDF file formats. If a user is tricked to open a malicious file with any of the affected products, this could lead the application to crash or potentially lead to arbitrary code execution. ...

SSA-999588 V1.6 (Last Update: 2024-10-08): Multiple Vulnerabilities in User Management Component (UMC) Before V2.11.2

Titel

SSA-999588 V1.6 (Last Update: 2024-10-08): Multiple Vulnerabilities in User Management Component (UMC) Before V2.11.2

Veröffentlicht

8. Oktober 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-999588.html

Text

Siemens User Management Component (UMC) before V2.11.2 is affected by multiple vulnerabilities where the most severe could lead to a restart of the UMC server. Siemens has released new versions for several affected products and recommends to update to the latest versions. Siemens is preparing further fix versions and recommends ...

SSA-959281 V1.0: XML File Parsing Vulnerabilities in Teamcenter Visualization and JT2Go

Titel

SSA-959281 V1.0: XML File Parsing Vulnerabilities in Teamcenter Visualization and JT2Go

Veröffentlicht

8. Oktober 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-959281.html

Text

Siemens Teamcenter Visualization and JT2Go are affected by stack buffer overflow and null pointer dereference vulnerabilities that could be triggered while parsing XML file. If a user is tricked to open a malicious XML file with any of the affected products, this could cause the application to crash or potentially ...

SSA-620288 V1.2 (Last Update: 2024-10-08): Multiple Vulnerabilities (NUCLEUS:13) in Capital Embedded AR Classic

Titel

SSA-620288 V1.2 (Last Update: 2024-10-08): Multiple Vulnerabilities (NUCLEUS:13) in Capital Embedded AR Classic

Veröffentlicht

8. Oktober 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-620288.html

Text

Multiple vulnerabilities (also known as “NUCLEUS:13”) have be identified in the Nucleus RTOS (real-time operating system) and reported in the Siemens Security Advisory SSA-044112: https://cert-portal.siemens.com/productcert/html/ssa-044112.html. Capital Embedded AR Classic uses an affected version of the Nucleus software and inherently contains several of these vulnerabilities. Siemens has released a new version ...

SSA-054046 V1.0: Unauthenticated Information Disclosure in Web Server of SIMATIC S7-1500 CPUs

Titel

SSA-054046 V1.0: Unauthenticated Information Disclosure in Web Server of SIMATIC S7-1500 CPUs

Veröffentlicht

8. Oktober 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-054046.html

Text

Several SIMATIC S7-1500 CPU versions are affected by an authentication bypass vulnerability that could allow an unauthenticated remote attacker to gain knowledge about actual and configured maximum cycle times and communication load of the CPU. Siemens has released new versions for several affected products and recommends to update to the ...

SSA-426509 V1.0: Multiple Local Code Execution Vulnerabilities in Questa and ModelSim Before V2024.3

Titel

SSA-426509 V1.0: Multiple Local Code Execution Vulnerabilities in Questa and ModelSim Before V2024.3

Veröffentlicht

8. Oktober 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-426509.html

Text

Questa and ModelSim (incl. OEM Editions) are affected by multiple vulnerabilities that could allow a local attacker to inject arbitrary code and escalate privileges. Siemens has released new versions for the affected products and recommends to update to the latest versions.

SSA-955858 V1.3 (Last Update: 2024-10-08): Multiple Vulnerabilities in LOGO! 8 BM Devices

Titel

SSA-955858 V1.3 (Last Update: 2024-10-08): Multiple Vulnerabilities in LOGO! 8 BM Devices

Veröffentlicht

8. Oktober 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-955858.html

Text

LOGO! 8 BM (incl. SIPLUS variants) contains multiple web-related vulnerabilities. These could allow an attacker to execute code remotely, put the device into a denial of service state or retrieve parts of the memory. The vulnerabilities are related to the hardware of the product. Siemens has released new hardware versions ...

SSA-148641 V1.3 (Last Update: 2024-10-08): XPath Constraint Vulnerability in Mendix Runtime

Titel

SSA-148641 V1.3 (Last Update: 2024-10-08): XPath Constraint Vulnerability in Mendix Runtime

Veröffentlicht

8. Oktober 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-148641.html

Text

A XPath Constraint vulnerability in the Mendix Runtime was discovered, that can affect the running applications. The vulnerability could allow a malicious user to deduce contents of inaccessible attributes and modify sensitive data. Siemens has released new versions for the affected products and recommends to update to the latest versions.

03.10.2024

TEM Opera Plus FM Family Transmitter

Titel

TEM Opera Plus FM Family Transmitter

Veröffentlicht

3. Oktober 2024 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-277-01

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 9.3 ATTENTION: Exploitable remotely/low attack complexity/public exploits are available Vendor: TEM Equipment: Opera Plus FM Family Transmitter Vulnerabilities: Missing Authentication for Critical Function, Cross-Site Request Forgery (CSRF) 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to perform remote code ...

02.10.2024

BOSCH PSIRT

Multiple vulnerabilites in libexpat affecting PRC7000

Titel

Multiple vulnerabilites in libexpat affecting PRC7000

Veröffentlicht

2. Oktober 2024 02:00

URL

https://psirt.bosch.com/security-advisories/bosch-sa-200802.html

Text

BOSCH-SA-200802: Multiple vulnerabilities were discovered in the open source library \"libexpat\", affecting the XML parser functionality. These vulnerabilities allow for integer overflows and invalid negative values for buffer sizes. As this may affect the \"Import\" and \"Restore\" functionality - which use libexpat to parse XML files - of the device, ...

01.10.2024

Mitsubishi Electric MELSEC iQ-F FX5-OPC

Titel

Mitsubishi Electric MELSEC iQ-F FX5-OPC

Veröffentlicht

1. Oktober 2024 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-275-02

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/low attack complexity Vendor: Mitsubishi Electric Equipment: MELSEC iQ-F FX5-OPC Vulnerability: NULL Pointer Dereference 2. RISK EVALUATION Successful exploitation of this vulnerability could allow a remote attacker to cause a Denial-of-Service (DoS) condition on the product by getting a legitimate ...

01.10.2024

Optigo Networks ONS-S8 Spectra Aggregation Switch

Titel

Optigo Networks ONS-S8 Spectra Aggregation Switch

Veröffentlicht

1. Oktober 2024 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-275-01

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 9.3 ATTENTION: Exploitable remotely/Low attack complexity Vendor: Optigo Networks Equipment: ONS-S8 - Spectra Aggregation Switch Vulnerabilities: Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion'), Weak Authentication 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow an ...

01.10.2024

BOSCH PSIRT

Sensitive information disclosure in Bosch Configuration Manager

Titel

Sensitive information disclosure in Bosch Configuration Manager

Veröffentlicht

1. Oktober 2024 02:00

URL

https://psirt.bosch.com/security-advisories/bosch-sa-981803-bt.html

Text

BOSCH-SA-981803-BT: A vulnerability was discovered during internal testing of the Bosch Configuration Manager, which may temporarily store sensitive information of the configured system.

September 2024

30.09.2024

US CERT

Iranian Cyber Actors’ Brute Force and Credential Access Activity Compromises Critical Infrastructure Organizations

Titel

Iranian Cyber Actors’ Brute Force and Credential Access Activity Compromises Critical Infrastructure Organizations

Veröffentlicht

30. September 2024 18:28

URL

https://www.cisa.gov/news-events/cybersecurity-advisories/aa24-290a

Text

Summary The Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Security Agency (CISA), the National Security Agency (NSA), the Communications Security Establishment Canada (CSE), the Australian Federal Police (AFP), and Australian Signals Directorate's Australian Cyber Security Centre (ASD's ACSC) are releasing this joint Cybersecurity Advisory to warn network defenders ...

goTenna Pro ATAK Plugin

Titel

goTenna Pro ATAK Plugin

Veröffentlicht

26. September 2024 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-270-05

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 7.1 ATTENTION: Low attack complexity Vendor: goTenna Equipment: Pro ATAK Plugin Vulnerabilities: Weak Password Requirements, Insecure Storage of Sensitive Information, Missing Support for Integrity Check, Cleartext Transmission of Sensitive Information, Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG), Weak Authentication, Insertion of Sensitive ...

Atelmo Atemio AM 520 HD Full HD Satellite Receiver

Titel

Atelmo Atemio AM 520 HD Full HD Satellite Receiver

Veröffentlicht

26. September 2024 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-270-03

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 9.3 ATTENTION: Exploitable remotely/low attack complexity/public exploits are available Vendor: Atelmo Equipment: Atemio AM 520 HD Full HD Satellite Receiver Vulnerability: OS Command Injection 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an unauthorized attacker to execute system commands with elevated ...

https://www.cisa.gov/news-events/ics-advisories/icsa-24-270-01

Advantech ADAM-5550

Titel

Advantech ADAM-5550

Veröffentlicht

26. September 2024 14:00

URL

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.7 ATTENTION: Low attack complexity Vendor: Advantech Equipment: ADAM-5550 Vulnerabilities: Weak Encoding for Password, Cross-site Scripting 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow a remote attacker to intercept the easily decodable credentials of a legitimate user to gain full access ...

goTenna Pro X and Pro X2

Titel

goTenna Pro X and Pro X2

Veröffentlicht

26. September 2024 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-270-04

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.7 ATTENTION: Low attack complexity Vendor: goTenna Equipment: Pro series Vulnerabilities: Weak Password Requirements, Insecure Storage of Sensitive Information, Missing Support for Integrity Check, Cleartext Transmission of Sensitive Information, Improper Restriction of Communication Channel to Intended Endpoints, Use of Cryptographically Weak Pseudo-Random Number ...

https://www.cisa.gov/news-events/ics-advisories/icsa-24-270-02

Advantech ADAM-5630

Titel

Advantech ADAM-5630

Veröffentlicht

26. September 2024 14:00

URL

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.5 ATTENTION: Low attack complexity Vendor: Advantech Equipment: ADAM-5630 Vulnerabilities: Use of Persistent Cookies Containing Sensitive Information 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to hijack a legitimate user's session, perform cross-site request forgery, or cause a denial-of-service ...

goTenna Pro X and Pro X2 (Update A)

Titel

goTenna Pro X and Pro X2 (Update A)

Veröffentlicht

26. September 2024 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-270-04

Text

OMNTEC Proteus Tank Monitoring

Titel

OMNTEC Proteus Tank Monitoring

Veröffentlicht

24. September 2024 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-268-06

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 9.3 ATTENTION: Exploitable remotely/low attack complexity Vendor: OMNTEC Mfg., Inc. Equipment: Proteus Tank Monitoring Vulnerability: Missing Authentication for Critical Function 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to perform administrative actions without proper authentication. 3. TECHNICAL DETAILS 3.1 ...

Franklin Fueling Systems TS-550 EVO

Titel

Franklin Fueling Systems TS-550 EVO

Veröffentlicht

24. September 2024 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-268-03

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.7 ATTENTION: Exploitable remotely/low attack complexity Vendor: Franklin Fueling Systems Equipment: TS-550 EVO Automatic Tank Gauge Vulnerability: Absolute Path Traversal 2. RISK EVALUATION Successful exploitation of this vulnerability allow an attacker to gain administrative access over the affected device. 3. TECHNICAL DETAILS 3.1 ...

https://www.cisa.gov/news-events/ics-advisories/icsa-24-268-05

Moxa MXview One

Titel

Moxa MXview One

Veröffentlicht

24. September 2024 14:00

URL

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 6.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Moxa Equipment: MXview One, MXview One Central Manager Series Vulnerabilities: Cleartext Storage In A File or On Disk, Path Traversal, Time-of-Check Time-of-Use Race Condition 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker ...