Bulletins | CERT@VDE

SSA-433782 V1.0: Improper Access Control Vulnerability in Mendix

Titel

SSA-433782 V1.0: Improper Access Control Vulnerability in Mendix

Veröffentlicht

12. Juli 2022 02:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-433782.pdf

Text

An improper access control vulnerability in Mendix applications was discovered. In case of access to an active user session, the vulnerability could allow to change that user’s password bypassing password validations within a Mendix application. Siemens has released updates for the affected products and recommends to update to the latest ...

SSA-429204 V1.0: Open Design Alliance Drawings SDK Vulnerabilities in JT2Go and Teamcenter Visualization

Titel

SSA-429204 V1.0: Open Design Alliance Drawings SDK Vulnerabilities in JT2Go and Teamcenter Visualization

Veröffentlicht

12. Juli 2022 02:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-429204.pdf

Text

JT2Go and Teamcenter Visualization are affected by multiple file parsing vulnerabilities in Drawings SDK from Open Design Alliance. If a user is tricked to open a malicious DWG file with any of the affected products, this could lead the application to crash or potentially lead to arbitrary code execution. Siemens ...

SSA-348662 V1.0: Multiple Vulnerabilities in SIMATIC MV500 Devices before V3.3

Titel

SSA-348662 V1.0: Multiple Vulnerabilities in SIMATIC MV500 Devices before V3.3

Veröffentlicht

12. Juli 2022 02:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-348662.pdf

Text

SIMATIC MV500 devices before V3.3 are affected by multiple vulnerabilities that could allow attackers to hijack other users’ web based management sessions (CVE-2022-33137) or access data on the device without prior authentication (CVE-2022-33138). Siemens has released an update for the SIMATIC MV500 devices and recommends to update to the latest ...

SSA-321292 V1.1 (Last Update: 2022-07-12): Denial of Service in the OPC Foundation Local Discovery Server (LDS) in Industrial P...

Titel

SSA-321292 V1.1 (Last Update: 2022-07-12): Denial of Service in the OPC Foundation Local Discovery Server (LDS) in Industrial Products

Veröffentlicht

12. Juli 2022 02:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-321292.pdf

Text

A vulnerability has been identified in the OPC Foundation Local Discovery Server (LDS) [0] of several industrial products. The vulnerability could cause a denial of service condition on the service or the device. Siemens has released updates for several affected products and recommends to update to the latest versions. Siemens ...

SSA-310038 V1.0: Multiple Vulnerabilities in SCALANCE X Switch Devices

Titel

SSA-310038 V1.0: Multiple Vulnerabilities in SCALANCE X Switch Devices

Veröffentlicht

12. Juli 2022 02:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-310038.pdf

Text

Several SCALANCE X switches contain multiple vulnerabilities. An unauthenticated attacker could reboot, cause denial-of-service conditions and potentially impact the system by other means through heap and buffer overflow vulnerabilities. Siemens has released updates for several affected products and recommends to update to the latest versions. Siemens is preparing further updates ...

SSA-309571 V1.4 (Last Update: 2022-07-12): IPU 2021.1 Vulnerabilities in Siemens Industrial Products using Intel CPUs (June 2021)

Titel

SSA-309571 V1.4 (Last Update: 2022-07-12): IPU 2021.1 Vulnerabilities in Siemens Industrial Products using Intel CPUs (June 2021)

Veröffentlicht

12. Juli 2022 02:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-309571.pdf

Text

Intel has published information on vulnerabilities in Intel products in June 2021. This advisory lists the related Siemens Industrial products affected by these vulnerabilities that can be patched by applying the corresponding BIOS update. In this advisory we summarize: “2021.1 IPU – Intel® CSME, SPS and LMS Advisory” Intel-SA-00459, “2021.1 ...

SSA-306654 V1.2 (Last Update: 2022-07-12): Insyde BIOS Vulnerabilities in Siemens Industrial Products

Titel

SSA-306654 V1.2 (Last Update: 2022-07-12): Insyde BIOS Vulnerabilities in Siemens Industrial Products

Veröffentlicht

12. Juli 2022 02:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-306654.pdf

Text

Insyde has published information on vulnerabilities in Insyde BIOS in February 2022. This advisory lists the Siemens Industrial products affected by these vulnerabilities. Siemens is preparing updates and recommends specific countermeasures for products where updates are not, or not yet available.

SSA-285795 V1.1 (Last Update: 2022-07-12): Denial of Service in OPC-UA in Industrial Products

Titel

SSA-285795 V1.1 (Last Update: 2022-07-12): Denial of Service in OPC-UA in Industrial Products

Veröffentlicht

12. Juli 2022 02:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-285795.pdf

Text

Vulnerability in the underlying third party component OPC UA ANSIC Stack (also called Legacy C-Stack) affects several industrial products. The vulnerability could cause a crash of the component that includes the vulnerable part of the stack. Siemens has released updates for several affected products and recommends to update to the ...

SSA-244969 V1.6 (Last Update: 2022-07-12): OpenSSL Vulnerability in Industrial Products

Titel

SSA-244969 V1.6 (Last Update: 2022-07-12): OpenSSL Vulnerability in Industrial Products

Veröffentlicht

12. Juli 2022 02:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-244969.pdf

Text

OpenSSL has published a security advisory [0] about a vulnerability in OpenSSL versions 1.1.1 < 1.1.1l and 1.0.2 < 1.0.2za that allows an attacker to cause a denial of service (DoS) or to disclose private memory content. Siemens has released updates for several affected products and recommends to update to ...

SSA-243317 V1.0: File Parsing Vulnerability in Simcenter Femap and Parasolid

Titel

SSA-243317 V1.0: File Parsing Vulnerability in Simcenter Femap and Parasolid

Veröffentlicht

12. Juli 2022 02:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-243317.pdf

Text

Simcenter Femap and Parasolid are affected by an out of bounds read vulnerability that could be triggered when the application reads files in NEU format. If a user is tricked to open a malicious file with the affected applications, an attacker could leverage the vulnerability to perform remote code execution ...

SSA-225578 V1.0: Improper Access Control in SICAM GridEdge

Titel

SSA-225578 V1.0: Improper Access Control in SICAM GridEdge

Veröffentlicht

12. Juli 2022 02:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-225578.pdf

Text

The SICAM GridEdge software contains a improper access control vulnerability. This could allow persons with local access to the host system to inject an SSH key. Siemens has released updates for several affected products and recommends to update to the latest versions. Siemens recommends specific countermeasures for products where updates ...

SSA-220589 V1.1 (Last Update: 2022-07-12): Hard Coded Default Credential Vulnerability in Teamcenter

Titel

SSA-220589 V1.1 (Last Update: 2022-07-12): Hard Coded Default Credential Vulnerability in Teamcenter

Veröffentlicht

12. Juli 2022 02:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-220589.pdf

Text

Siemens has released updates for Teamcenter that fixes a security vulnerability related to unsecure storage of user credentials. This vulnerability affects Java EE Server Manager HTML Adaptor. This service is not installed by default and currently also obsoleted. Siemens has released updates for the affected products and recommends to update ...

07.07.2022

Bently Nevada ADAPT 3701/4X Series and 60M100

Titel

Bently Nevada ADAPT 3701/4X Series and 60M100

Veröffentlicht

7. Juli 2022 16:05

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-188-02

Text

1. EXECUTIVE SUMMARY CVSS v3 9.1 ATTENTION: Exploitable remotely/low attack complexity Vendor: Bently Nevada Equipment: 3701/4X series and 60M100 (3701/60) Condition Monitoring System Vulnerabilities: Use of Hard-coded Credentials, Missing Authentication for Critical Function CISA is aware of a public report, known as “OT:ICEFALL” that details vulnerabilities found in multiple operational ...

07.07.2022

Mitsubishi Electric MELSEC iQ-R Series C Controller Module (Update B)

Titel

Mitsubishi Electric MELSEC iQ-R Series C Controller Module (Update B)

Veröffentlicht

7. Juli 2022 16:00

URL

https://us-cert.cisa.gov/ics/advisories/icsa-21-280-04

Text

This updated advisory is a follow-up to the original advisory titled ICSA-21-280-04 Mitsubishi Electric MELSEC iQ-R Series C Controller Module (Update A) that was published October 28, 2021, to the ICS webpage on us-cert.cisa.gov. This advisory contains mitigations for an Uncontrolled Resource Consumption vulnerability in Mitsubishi Electric MELSEC iQ-R Series ...

06.07.2022

US CERT

AA22-187A: North Korean State-Sponsored Cyber Actors Use Maui Ransomware to Target the Healthcare and Public Health Sector

Titel

AA22-187A: North Korean State-Sponsored Cyber Actors Use Maui Ransomware to Target the Healthcare and Public Health Sector

Veröffentlicht

6. Juli 2022 16:00

URL

https://us-cert.cisa.gov/ncas/alerts/aa22-187a

Text

Original release date: July 6, 2022SummaryThe Federal Bureau of Investigation (FBI), Cybersecurity and Infrastructure Security Agency (CISA), and the Department of the Treasury (Treasury) are releasing this joint Cybersecurity Advisory (CSA) to provide information on Maui ransomware, which has been used by North Korean state-sponsored cyber actors since at least ...

Juni 2022

AA22-181A: #StopRansomware: MedusaLocker

US CERT

Titel

AA22-181A: #StopRansomware: MedusaLocker

Veröffentlicht

30. Juni 2022 19:00

URL

https://us-cert.cisa.gov/ncas/alerts/aa22-181a

Text

Original release date: June 30, 2022SummaryActions to take today to mitigate cyber threats from ransomware: • Prioritize remediating known exploited vulnerabilities. • Train users to recognize and report phishing attempts. • Enable and enforce multifactor authentication. Note: this joint Cybersecurity Advisory (CSA) is part of an ongoing #StopRansomware effort to ...

https://us-cert.cisa.gov/ics/advisories/icsa-22-181-01

Exemys RME1

Titel

Exemys RME1

Veröffentlicht

30. Juni 2022 16:25

URL

Text

This advisory contains mitigations for an Improper Authentication vulnerability in the Exemys RME1 analog acquisition module.

Yokogawa Wide Area Communication Router

Titel

Yokogawa Wide Area Communication Router

Veröffentlicht

30. Juni 2022 16:20

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-181-02

Text

This advisory contains mitigations for a Use of Insufficiently Random Values vulnerability in the Yokogawa Wide Area Communication Router.

Emerson DeltaV Distributed Control System

Titel

Emerson DeltaV Distributed Control System

Veröffentlicht

30. Juni 2022 16:15

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-181-03

Text

This advisory contains mitigations for a Missing Authentication for Critical Function, Use of Hard-coded Credentials, Insufficient Verification of Data Authenticity, and Use of a Broken or Risky Cryptographic Algorithm vulnerabilities in the Emerson DeltaV Distributed Control System software management platform.

Mitsubishi Electric FA Engineering Software (Update A)

Titel

Mitsubishi Electric FA Engineering Software (Update A)

Veröffentlicht

30. Juni 2022 16:05

URL

https://us-cert.cisa.gov/ics/advisories/icsa-21-350-05

Text

This updated advisory is a follow-up to the original advisory titled ICSA-21-350-05 Mitsubishi Electric FA Engineering Software that was published December 16, 2021, on the ICS webpage on cisa.gov/ics. This advisory contains mitigations for Out-of-bounds Read, and Integer Underflow vulnerabilities in Mitsubishi Electric's FA Engineering Software products.

CODESYS Gateway Server (Update A)

Titel

CODESYS Gateway Server (Update A)

Veröffentlicht

30. Juni 2022 16:00

URL

https://us-cert.cisa.gov/ics/advisories/ICSA-15-258-02

Text

This updated advisory is a follow-up to the original advisory titled ICSA-15-258-02 3S CODESYS Gateway Server Buffer overflow Vulnerability that was published September 15, 2015, on the ICS webpage at cisa.gov/ics. This advisory provides mitigation details for a heap-based buffer overflow vulnerability in CODESYS Gateway Server products.

https://us-cert.cisa.gov/ics/advisories/icsa-22-179-01

ABB e-Design

Titel

ABB e-Design

Veröffentlicht

28. Juni 2022 16:25

URL

Text

This advisory contains mitigations for an Incorrect Default Permissions vulnerability in ABB e-Design engineering software.

Omron SYSMAC CS/CJ/CP Series and NJ/NX Series

Titel

Omron SYSMAC CS/CJ/CP Series and NJ/NX Series

Veröffentlicht

28. Juni 2022 16:20

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-179-02

Text

This advisory contains mitigations for Cleartext Transmission of Sensitive Information, Insufficient Verification of Data Authenticity, and Plaintext Storage of a Password vulnerabilities in Omron SYSMAC CS/CJ/CP Series and NJ/NX Series programmable logic controllers.

Motorola Solutions MOSCAD IP and ACE IP Gateways

Titel

Motorola Solutions MOSCAD IP and ACE IP Gateways

Veröffentlicht

28. Juni 2022 16:10

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-179-04

Text

This advisory contains mitigations for a missing authentication for critical function vulnerability in the Motorola Solutions MOSCAD IP and ACE IP Gateways products.