Bulletins | CERT@VDE

https://www.cisa.gov/news-events/ics-advisories/icsa-23-068-01

Akuvox E11

Titel

<a href="/news-events/ics-advisories/icsa-23-068-01" hreflang="en">Akuvox E11</a>

Veröffentlicht

9. März 2023 13:00

URL

Text

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Akuvox Equipment: E11 Vulnerabilities: Generation of Predictable IV with CBC, User of Hard-coded Cryptographic Key, Missing Authentication for Critical Function, Storing Passwords in a Recoverable Format, Weak Password Recovery Mechanism for Forgotten Password, Command Injection, Reliance on File ...

https://www.cisa.gov/news-events/ics-advisories/icsa-23-068-04

Step Tools Third-Party

Titel

<a href="/news-events/ics-advisories/icsa-23-068-04" hreflang="en">Step Tools Third-Party</a>

Veröffentlicht

9. März 2023 13:00

URL

Text

1. EXECUTIVE SUMMARY CVSS v3 2.2 ATTENTION: Low attack complexity Vendor: Step Tools, Inc Equipment: STEPTools ifcmesh library Vulnerability: Null Pointer Dereference 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to deny application usage when reading a specially constructed file. 3. TECHNICAL DETAILS 3.1 AFFECTED PRODUCTS ...

https://www.cisa.gov/news-events/ics-advisories/icsa-23-068-02

B&R Systems Diagnostics Manager

Titel

<a href="/news-events/ics-advisories/icsa-23-068-02" hreflang="en">B&R Systems Diagnostics Manager</a>

Veröffentlicht

9. März 2023 13:00

URL

Text

1. EXECUTIVE SUMMARY CVSS v3 6.1 ATTENTION: Exploitable remotely/low attack complexity/public exploits are available Vendor: B&R Industrial Automation Equipment: Systems Diagnostics Manager (SDM) Vulnerability: Cross-site Scripting 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to execute arbitrary code to exfiltrate data and perform any action within ...

https://www.cisa.gov/news-events/ics-advisories/icsa-23-068-03

ABB Ability Symphony Plus

Titel

<a href="/news-events/ics-advisories/icsa-23-068-03" hreflang="en">ABB Ability Symphony Plus</a>

Veröffentlicht

9. März 2023 13:00

URL

Text

1. EXECUTIVE SUMMARY CVSS v3 8.8 ATTENTION: Low attack complexity Vendor: ABB Equipment: Ability Symphony Plus Vulnerability: Improper Authentication 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an unauthorized client to connect to the S+ Operations servers (human machine interface (HMI) network), to act as a legitimate S+ ...

https://www.cisa.gov/news-events/ics-advisories/icsa-23-068-05

Hitachi Energy Relion 670, 650 and SAM600-IO Series

Titel

<a href="/news-events/ics-advisories/icsa-23-068-05" hreflang="en">Hitachi Energy Relion 670, 650 and SAM600-IO Series</a>

Veröffentlicht

9. März 2023 13:00

URL

Text

1. EXECUTIVE SUMMARY CVSS v3 4.5 ATTENTION: Exploitable remotely/low attack complexity Vendor: Hitachi Energy Equipment: Relion 670, 650, and SAM600-IO Series Vulnerability: Insufficient Verification of Data Authenticity 2. RISK EVALUATION Successful exploitation of this vulnerability could cause the Intelligent Electronic Device (IED) to restart, causing a temporary denial-of-service condition. 3. ...

02.03.2023

https://www.cisa.gov/news-events/ics-advisories/icsa-23-061-03

Rittal CMC III Access systems

Titel

<a href="/news-events/ics-advisories/icsa-23-061-03" hreflang="en">Rittal CMC III Access systems</a>

Veröffentlicht

2. März 2023 13:00

URL

Text

02.03.2023

https://www.cisa.gov/news-events/ics-advisories/icsa-23-061-02

Baicells Nova

Titel

<a href="/news-events/ics-advisories/icsa-23-061-02" hreflang="en">Baicells Nova</a>

Veröffentlicht

2. März 2023 13:00

URL

Text

02.03.2023

https://www.cisa.gov/news-events/ics-advisories/icsa-23-061-01

Mitsubishi Electric MELSEC iQ-F Series

Titel

<a href="/news-events/ics-advisories/icsa-23-061-01" hreflang="en">Mitsubishi Electric MELSEC iQ-F Series</a>

Veröffentlicht

2. März 2023 13:00

URL

Text

Februar 2023

28.02.2023

https://www.cisa.gov/news-events/ics-advisories/icsa-23-059-02

Hitachi Energy Gateway Station

Titel

<a href="/news-events/ics-advisories/icsa-23-059-02" hreflang="en">Hitachi Energy Gateway Station</a>

Veröffentlicht

28. Februar 2023 13:00

URL

Text

28.02.2023

https://www.cisa.gov/news-events/ics-advisories/icsa-23-059-01

Hitachi Energy Gateway Station

Titel

<a href="/news-events/ics-advisories/icsa-23-059-01" hreflang="en">Hitachi Energy Gateway Station</a>

Veröffentlicht

28. Februar 2023 13:00

URL

Text

28.02.2023

https://www.cisa.gov/news-events/ics-advisories/icsa-22-139-01-0

Mitsubishi Electric MELSEC iQ-F Series (Update B)

Titel

<a href="/news-events/ics-advisories/icsa-22-139-01-0" hreflang="en">Mitsubishi Electric MELSEC iQ-F Series (Update B)</a>

Veröffentlicht

28. Februar 2023 13:00

URL

Text

https://www.cisa.gov/news-events/cybersecurity-advisories/aa23-059a

CISA Red Team Shares Key Findings to Improve Monitoring...

Titel

<a href="/news-events/cybersecurity-advisories/aa23-059a" hreflang="en">CISA Red Team Shares Key Findings to Improve Monitoring and Hardening of Networks</a>

Veröffentlicht

24. Februar 2023 20:04

URL

Text

CISA Red Team Shares Key Findings to Improve Monitoring and Hardening of Networks

Titel

CISA Red Team Shares Key Findings to Improve Monitoring and Hardening of Networks

Veröffentlicht

24. Februar 2023 20:04

URL

https://www.cisa.gov/news-events/cybersecurity-advisories/aa23-059a

Text

SUMMARY The Cybersecurity and Infrastructure Security Agency (CISA) is releasing this Cybersecurity Advisory (CSA) detailing activity and key findings from a recent CISA red team assessment—in coordination with the assessed organization—to provide network defenders recommendations for improving their organization's cyber posture. Actions to take today to harden your local environment: ...

https://www.cisa.gov/news-events/cybersecurity-advisories/aa23-061a

#StopRansomware: Royal Ransomware

Titel

<a href="/news-events/cybersecurity-advisories/aa23-061a" hreflang="en">#StopRansomware: Royal Ransomware</a>

Veröffentlicht

24. Februar 2023 18:30

URL

Text

#StopRansomware: Royal Ransomware

Titel

#StopRansomware: Royal Ransomware

Veröffentlicht

24. Februar 2023 18:30

URL

https://www.cisa.gov/news-events/cybersecurity-advisories/aa23-061a

Text

SUMMARY Note: This joint Cybersecurity Advisory (CSA) is part of an ongoing #StopRansomware effort to publish advisories for network defenders that detail various ransomware variants and ransomware threat actors. These #StopRansomware advisories include recently and historically observed tactics, techniques, and procedures (TTPs) and indicators of compromise (IOCs) to help organizations ...

https://us-cert.cisa.gov/ics/advisories/icsa-23-054-01

PTC ThingWorx Edge

Titel

PTC ThingWorx Edge

Veröffentlicht

23. Februar 2023 16:10

URL

Text

Moxa UC Series (Update A)

Titel

Moxa UC Series (Update A)

Veröffentlicht

23. Februar 2023 16:05

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-333-04

Text

BD Alaris Infusion Central (Update A)

Titel

BD Alaris Infusion Central (Update A)

Veröffentlicht

23. Februar 2023 16:00

URL

https://us-cert.cisa.gov/ics/advisories/icsma-23-047-01

Text

https://www.cisa.gov/news-events/ics-advisories/icsa-23-054-01

PTC ThingWorx Edge

Titel

<a href="/news-events/ics-advisories/icsa-23-054-01" hreflang="en">PTC ThingWorx Edge</a>

Veröffentlicht

23. Februar 2023 13:00

URL

Text

21.02.2023

Philips Vue PACS (Update C)

Titel

Philips Vue PACS (Update C)

Veröffentlicht

21. Februar 2023 16:00

URL

https://us-cert.cisa.gov/ics/advisories/icsma-21-187-01

Text

This updated advisory is a follow-up to the advisory update titled ICSMA-21-87-01 Philips Vue PACS (Update A) that was published January 20, 2022, to the ICS webpage on www.cisa.gov/uscert/ics. This advisory contains mitigations for numerous vulnerabilities in Philips Vue PACS products.

21.02.2023

https://www.cisa.gov/news-events/ics-advisories/icsa-23-052-01

Mitsubishi Electric MELSOFT iQ AppPortal

Titel

<a href="/news-events/ics-advisories/icsa-23-052-01" hreflang="en">Mitsubishi Electric MELSOFT iQ AppPortal</a>

Veröffentlicht

21. Februar 2023 13:00

URL

Text

#StopRansomware: Ransomware Attacks on Critical Infrastructure Fund DPRK Malicious Cyber Activities

Titel

#StopRansomware: Ransomware Attacks on Critical Infrastructure Fund DPRK Malicious Cyber Activities

Veröffentlicht

16. Februar 2023 21:45

URL

https://www.cisa.gov/news-events/cybersecurity-advisories/aa23-040a

Text

SUMMARY Note: This Cybersecurity Advisory (CSA) is part of an ongoing #StopRansomware effort to publish advisories for network defenders that detail various ransomware variants and various ransomware threat actors. These #StopRansomware advisories detail historically and recently observed tactics, techniques, and procedures (TTPs) and indicators of compromise (IOCs) to help organizations ...

https://www.cisa.gov/news-events/cybersecurity-advisories/aa23-040a

#StopRansomware: Ransomware Attacks on Critical Infrast...

Titel

<a href="/news-events/cybersecurity-advisories/aa23-040a" hreflang="en">#StopRansomware: Ransomware Attacks on Critical Infrastructure Fund DPRK Malicious Cyber Activities</a>

Veröffentlicht

16. Februar 2023 21:45

URL

Text

ESXiArgs Ransomware Virtual Machine Recovery Guidance

Titel

ESXiArgs Ransomware Virtual Machine Recovery Guidance

Veröffentlicht

16. Februar 2023 19:50

URL

https://www.cisa.gov/news-events/cybersecurity-advisories/aa23-039a

Text

Summary The Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) are releasing this joint Cybersecurity Advisory (CSA) in response to the ongoing ransomware campaign, known as “ESXiArgs.” Malicious actors may be exploiting known vulnerabilities in VMware ESXi servers that are likely running unpatched and out-of-service ...