Bulletins | CERT@VDE

https://us-cert.cisa.gov/ics/advisories/icsa-22-228-07

Sequi PortBloque S

Titel

Sequi PortBloque S

Veröffentlicht

16. August 2022 16:05

URL

Text

This advisory contains mitigations for Improper Authentication and Improper Authorization vulnerabilities in Sequi PortBloque S, a serial Modbus firewall.

16.08.2022

Siemens Industrial Products with OPC UA (Update B)

Titel

Siemens Industrial Products with OPC UA (Update B)

Veröffentlicht

16. August 2022 16:00

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-132-08

Text

This updated advisory is a follow-up to the original advisory titled ICSA-22-132-08 Siemens Industrial Products with OPC UA (Update A) that was published May 12, 2022, on the ICS webpage on cisa.gov/ics. This advisory contains mitigations for various Siemens Industrial Products with OPC UA products.

AA22-223A: #StopRansomware: Zeppelin Ransomware

US CERT

Titel

AA22-223A: #StopRansomware: Zeppelin Ransomware

Veröffentlicht

11. August 2022 18:00

URL

https://us-cert.cisa.gov/ncas/alerts/aa22-223a

Text

Original release date: August 11, 2022SummaryActions to take today to mitigate cyber threats from ransomware: • Prioritize remediating known exploited vulnerabilities. • Train users to recognize and report phishing attempts. • Enable and enforce multifactor authentication. Note: this joint Cybersecurity Advisory (CSA) is part of an ongoing #StopRansomware effort to ...

Siemens Simcenter STAR-CCM+

Titel

Siemens Simcenter STAR-CCM+

Veröffentlicht

11. August 2022 16:54

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-223-01

Text

This advisory contains mitigations for an Exposure of Sensitive Information to an Unauthorized Actor vulnerability in versions of Siemens Simcenter STAR-CCM+ products.

Schneider Electric EcoStruxure, EcoStruxure Process Expert, SCADAPack RemoteConnect for x70

Titel

Schneider Electric EcoStruxure, EcoStruxure Process Expert, SCADAPack RemoteConnect for x70

Veröffentlicht

11. August 2022 16:50

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-223-03

Text

This advisory contains mitigations for Heap-based Buffer Overflow, Wrap or Wraparound, Classic Buffer Overflow, and Out-of-bounds Write vulnerabilities in products using AT&T Labs Compressor (XMill) and Decompressor (XDemill).

Emerson ROC800, ROC800L and DL8000

Titel

Emerson ROC800, ROC800L and DL8000

Veröffentlicht

11. August 2022 16:48

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-223-04

Text

This advisory contains mitigations for an Insufficient Verification of Data Authenticity vulnerability in versions of ROC800, a remote automation controller.

Siemens SICAM A8000 Web Server Module

Titel

Siemens SICAM A8000 Web Server Module

Veröffentlicht

11. August 2022 16:46

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-223-05

Text

This advisory contains mitigations for an Improper Access Control vulnerability in versions of SICAM A8000 Web Server Module products.

Siemens SICAM TOOLBOX II

Titel

Siemens SICAM TOOLBOX II

Veröffentlicht

11. August 2022 16:44

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-223-06

Text

This advisory contains mitigations for a Use of Hard-coded Credentials vulnerability in versions of SICAM TOOLBOX II, a control and monitoring system.

Siemens SIMATIC S7-400 (Update A)

Titel

Siemens SIMATIC S7-400 (Update A)

Veröffentlicht

11. August 2022 16:40

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-104-12

Text

This updated advisory is a follow-up to the advisory update titled ICSA-21-104-12 Siemens SIMATIC S7-400 that was published April 14, 2022, to the ICS webpage on www.cisa.gov/ics. This advisory contains mitigations for an Uncontrolled Resource Consumption vulnerability in the Siemens SIMATIC S7-400.

Siemens Industrial Products Intel CPUs (Update E)

Titel

Siemens Industrial Products Intel CPUs (Update E)

Veröffentlicht

11. August 2022 16:38

URL

https://us-cert.cisa.gov/ics/advisories/icsa-21-222-05

Text

This updated advisory is a follow-up to the advisory update titled ICSA-21-222-05 Siemens Industrial Products Intel CPU (Update D) that was published July 14, 2022, to the ICS webpage on www.cisa.gov/ics. This advisory contains mitigations for a Missing Encryption of Sensitive Data vulnerability in versions of Siemens Industrial Products Intel ...

Siemens Industrial Products LLDP (Update C)

Titel

Siemens Industrial Products LLDP (Update C)

Veröffentlicht

11. August 2022 16:36

URL

https://us-cert.cisa.gov/ics/advisories/icsa-21-194-07

Text

This updated advisory is a follow-up to the original advisory titled ICSA-21-194-07 Siemens Industrial Products LLDP (Update B) that was published August 10, 2021, on the ICS webpage on cisa.gov/ics. This advisory contains mitigations for Classic Buffer Overflow and Uncontrolled Resource Consumption vulnerabilities in versions of Siemens Industrial Products (LLDP).

SafeLogic Designer vulnerabilities

BOSCH PSIRT

Titel

SafeLogic Designer vulnerabilities

Veröffentlicht

11. August 2022 02:00

URL

https://psirt.bosch.com/security-advisories/bosch-sa-463993.html

Text

BOSCH-SA-463993: The SafeLogic Designer from Bosch Rexroth contains technology from SICK AG. The manufacturer has published a security bulletin regarding a vulnerability in the .NET framework. \[1\]A vulnerability in a .NET framework class used by SafeLogic Designer allows an attacker to craft malicious project files. Opening/importing such a malicious project ...

Mitsubishi Electric GT SoftGOT2000

Titel

Mitsubishi Electric GT SoftGOT2000

Veröffentlicht

9. August 2022 16:15

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-221-01

Text

This advisory contains mitigations for Infinite Loop and OS Command Injection vulnerabilities in versions of Mitsubishi Electric GT SoftGOT2000 software.

https://us-cert.cisa.gov/ics/advisories/icsa-22-221-02

Emerson ControlWave

Titel

Emerson ControlWave

Veröffentlicht

9. August 2022 16:10

URL

Text

This advisory contains mitigations for an Insufficient Verification of Data Authenticity vulnerabilities in Emerson ControlWave products, a programmable controller.

https://us-cert.cisa.gov/ics/advisories/icsa-22-221-03

Emerson OpenBSI

Titel

Emerson OpenBSI

Veröffentlicht

9. August 2022 16:05

URL

Text

This advisory contains mitigations for Use of Broken or Risky Cryptographic Algorithm and Use of Hard-coded Cryptographic Key vulnerabilities in Emerson OpenBSI, a set of network communication services.

SSA-492828 V1.2 (Last Update: 2022-08-09): Denial-of-Service Vulnerability in SIMATIC S7-300 CPUs and SINUMERIK Controller

Titel

SSA-492828 V1.2 (Last Update: 2022-08-09): Denial-of-Service Vulnerability in SIMATIC S7-300 CPUs and SINUMERIK Controller

Veröffentlicht

9. August 2022 02:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-492828.pdf

Text

A vulnerability in S7-300 might allow an attacker to cause a Denial-of-Service condition on port 102 of the affected devices by sending specially crafted packets. Siemens recommends specific countermeasures for products where updates are not, or not yet available.

SSA-517377 V1.1 (Last Update: 2022-08-09): Multiple Vulnerabilities in the SRCS VPN Feature in SIMATIC CP Devices

Titel

SSA-517377 V1.1 (Last Update: 2022-08-09): Multiple Vulnerabilities in the SRCS VPN Feature in SIMATIC CP Devices

Veröffentlicht

9. August 2022 02:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-517377.pdf

Text

The below referenced devices contain multiple vulnerabilities that could be exploited when the SINEMA Remote Connect Server (SRCS) VPN feature is used. The feature is not activated by default. The most severe could allow an attacker to execute arbitrary code with elevated privileges under certain circumstances. Siemens has released an ...

SSA-661034 V1.2 (Last Update: 2022-08-09): Incorrect Permission Assignment in Multiple SIMATIC Software Products

Titel

SSA-661034 V1.2 (Last Update: 2022-08-09): Incorrect Permission Assignment in Multiple SIMATIC Software Products

Veröffentlicht

9. August 2022 02:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-661034.pdf

Text

Multiple SIMATIC software products are affected by a vulnerability that could allow an attacker to change the content of certain metafiles and subsequently manipulate parameters or behaviour of devices configured by the affected software products. Siemens has released updates for several affected products and recommends to update to the latest ...

SSA-914168 V1.3 (Last Update: 2022-08-09): Multiple Vulnerabilities in SIMATIC WinCC Affecting Other SIMATIC Software Products

Titel

SSA-914168 V1.3 (Last Update: 2022-08-09): Multiple Vulnerabilities in SIMATIC WinCC Affecting Other SIMATIC Software Products

Veröffentlicht

9. August 2022 02:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-914168.pdf

Text

Multiple vulnerabilities were found in SIMATIC WinCC that ultimately could allow attackers to retrieve and brute force password hashes and access other systems. Siemens has released updates for several affected products and recommends to update to the latest versions. Siemens is preparing further updates and recommends specific countermeasures for products ...

SSA-592007 V1.8 (Last Update: 2022-08-09): Denial-of-Service Vulnerability in Industrial Products

Titel

SSA-592007 V1.8 (Last Update: 2022-08-09): Denial-of-Service Vulnerability in Industrial Products

Veröffentlicht

9. August 2022 02:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-592007.pdf

Text

Several industrial controllers are affected by a security vulnerability that could allow an attacker to cause a Denial-of-Service condition via PROFINET DCP network packets under certain circumstances. Precondition for this scenario is a direct OSI Layer 2 access to the affected products. PROFIBUS interfaces are not affected. Siemens has released ...

SSA-840800 V1.1 (Last Update: 2022-08-09): Code Injection Vulnerability in RUGGEDCOM ROS

Titel

SSA-840800 V1.1 (Last Update: 2022-08-09): Code Injection Vulnerability in RUGGEDCOM ROS

Veröffentlicht

9. August 2022 02:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-840800.pdf

Text

RUGGEDCOM ROS-based devices are vulnerable to a web-based code injection attack. To execute this attack, it is necessary to access the system via the Command Line Interface (CLI). Siemens has released updates for several affected products and recommends to update to the latest versions. Siemens recommends specific countermeasures for products ...

SSA-555707 V1.0: Information Disclosure Vulnerability in Simcenter STAR-CCM+

Titel

SSA-555707 V1.0: Information Disclosure Vulnerability in Simcenter STAR-CCM+

Veröffentlicht

9. August 2022 02:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-555707.pdf

Text

Simcenter STAR-CCM+ contains an information disclosure vulnerability when using the Power-on-Demand public license server. An attacker could access a system’s host, user, and display name. Siemens is preparing updates and recommends specific countermeasures for products where updates are not, or not yet available.

SSB-439005 V4.6 (Last Update: 2022-08-09): Vulnerabilities in the additional GNU/Linux subsystem of the SIMATIC S7-1500 CPU 151...

Titel

SSB-439005 V4.6 (Last Update: 2022-08-09): Vulnerabilities in the additional GNU/Linux subsystem of the SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP

Veröffentlicht

9. August 2022 02:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssb-439005.pdf

Text

SSA-446448 V1.3 (Last Update: 2022-08-09): Denial of Service Vulnerability in PROFINET Stack Integrated on Interniche Stack

Titel

SSA-446448 V1.3 (Last Update: 2022-08-09): Denial of Service Vulnerability in PROFINET Stack Integrated on Interniche Stack

Veröffentlicht

9. August 2022 02:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-446448.pdf

Text

The PROFINET (PNIO) stack, when integrated with the Interniche IP stack, contains a vulnerability that could allow an attacker to cause a denial of service condition on affected industrial products. Siemens has released updates for several affected products and recommends to update to the latest versions. Siemens is preparing further ...