Bulletins | CERT@VDE

https://us-cert.cisa.gov/ics/advisories/icsa-21-180-04

JTEKT TOYOPUC PLC

Titel

JTEKT TOYOPUC PLC

Veröffentlicht

29. Juni 2021 16:10

URL

Text

This advisory contains mitigations for an Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in the JTEKT TOYOPUC programmable logic controller (PLC).

22.06.2021

CODESYS V2 web server

Titel

CODESYS V2 web server

Veröffentlicht

22. Juni 2021 16:10

URL

https://us-cert.cisa.gov/ics/advisories/icsa-21-173-02

Text

This advisory contains mitigations for Stack-based Buffer Overflow, Improper Access Control, Buffer Copy without Checking Size of Input, Improperly Implemented Security Check, Out-of-bounds Write, and Out-of-bounds Read vulnerabilities in CODESYS V2 web servers.

22.06.2021

CODESYS Control V2 communication

Titel

CODESYS Control V2 communication

Veröffentlicht

22. Juni 2021 16:05

URL

https://us-cert.cisa.gov/ics/advisories/icsa-21-173-03

Text

This advisory contains mitigations for Stack-based Buffer Overflow, Heap-based Buffer Overflow, and Improper Input Validation vulnerabilities in CODESYS V2 runtime systems software

22.06.2021

CODESYS Control V2 Linux SysFile library

Titel

CODESYS Control V2 Linux SysFile library

Veröffentlicht

22. Juni 2021 16:00

URL

https://us-cert.cisa.gov/ics/advisories/icsa-21-173-04

Text

This advisory contains mitigations for an OS Command Injection vulnerability in CODESYS V2 Runtime Toolkit software.

Schneider Electric Enerlin'X Com’X 510

Titel

Schneider Electric Enerlin'X Com’X 510

Veröffentlicht

17. Juni 2021 16:20

URL

https://us-cert.cisa.gov/ics/advisories/icsa-21-168-01

Text

This advisory contains mitigations for a Improper Privilege Management vulnerability in Schneider Electric Enerlin'X Com’X 510 energy servers.

Softing OPC-UA C++ SDK

Titel

Softing OPC-UA C++ SDK

Veröffentlicht

17. Juni 2021 16:15

URL

https://us-cert.cisa.gov/ics/advisories/icsa-21-168-02

Text

This advisory contains mitigations for an Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in the Softing OPC-UA C++ Software Development Kit (SDK).

WAGO M&M Software fdtCONTAINER (Update C)

Titel

WAGO M&M Software fdtCONTAINER (Update C)

Veröffentlicht

17. Juni 2021 16:05

URL

https://us-cert.cisa.gov/ics/advisories/icsa-21-021-05

Text

This updated advisory is a follow-up to the advisory update titled ICSA-21-021-05 WAGO M&M Software fdtCONTAINER (Update B) that was published February 16, 2021, to the ICS webpage on us-cert.cisa.gov. This advisory contains mitigations for a Deserialization of Untrusted Data vulnerability in the M&M (a WAGO subsidiary) fdtCONTAINER application.

Rockwell Automation ISaGRAF5 Runtime (Update A)

Titel

Rockwell Automation ISaGRAF5 Runtime (Update A)

Veröffentlicht

17. Juni 2021 16:00

URL

https://us-cert.cisa.gov/ics/advisories/icsa-20-280-01

Text

This updated advisory is a follow-up to the portal-to-web advisory titled ICSA-20-280-01P Rockwell Automation ISaGRAF5 Runtime. This advisory was originally posted to the HSIN ICS library on October 6, 2020, and was then published as ICSA-20-280-01 Rockwell Automation ISaGRAF5 Runtime to the ICS webpage on us-cert.cisa.gov on June 8, 2021. ...

15.06.2021

https://us-cert.cisa.gov/ics/advisories/icsa-21-166-01

ThroughTek P2P SDK

Titel

ThroughTek P2P SDK

Veröffentlicht

15. Juni 2021 16:10

URL

Text

This advisory contains mitigations for a Cleartext Transmission of Sensitive Information vulnerability in ThroughTek P2P Software Development Kit (SDK).

09.06.2021

BOSCH PSIRT

Multiple vulnerabilities in Bosch IP cameras

Titel

Multiple vulnerabilities in Bosch IP cameras

Veröffentlicht

9. Juni 2021 02:00

URL

https://psirt.bosch.com/security-advisories/bosch-sa-478243-bt.html

Text

BOSCH-SA-478243-BT: Multiple vulnerabilities for Bosch IP cameras have been discovered in a Penetration Test from Kaspersky ICS CERT during a certification effort from Bosch. Bosch rates these vulnerabilities with CVSSv3.1 base scores from 9.8 (Critical) to 4.9 (Medium), where the actual rating depends on the individual vulnerability and the final ...

SSA-574442 V1.1 (Last Update: 2021-06-08): Multiple PAR and DFT File Parsing Vulnerabilities in Solid Edge

Titel

SSA-574442 V1.1 (Last Update: 2021-06-08): Multiple PAR and DFT File Parsing Vulnerabilities in Solid Edge

Veröffentlicht

8. Juni 2021 02:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-574442.pdf

Text

Siemens has released a new version for Solid Edge to fix multiple vulnerabilities that could be triggered when the application reads files in different file formats (PAR, DFT extensions). If a user is tricked to open a malicious file with the affected application, this could lead to a crash, and ...

SSA-133038 V1.0: Multiple Modfem File Parsing Vulnerabilities in Simcenter Femap

Titel

SSA-133038 V1.0: Multiple Modfem File Parsing Vulnerabilities in Simcenter Femap

Veröffentlicht

8. Juni 2021 02:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-133038.pdf

Text

Siemens Simcenter Femap is affected by two vulnerabilities that could be triggered when the application reads modfem files. If a user is tricked to open a malicious file with the affected application, this could lead to a crash, and potentially also to arbitrary code execution or data extraction on the ...

SSA-200951 V1.0: Multiple Vulnerabilities in Third-Party Component libcurl of TIM Devices

Titel

SSA-200951 V1.0: Multiple Vulnerabilities in Third-Party Component libcurl of TIM Devices

Veröffentlicht

8. Juni 2021 02:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-200951.pdf

Text

SIMATIC TIM 1531 IRC devices are vulnerable to multiple vulnerabilities in the third party component libcurl that could allow an attacker to extract sensitive information and pass a revoked certificate as valid. Siemens has released an update for SIMATIC TIM 1531 IRC and recommends to update to the latest versions.

SSA-208356 V1.0: DFT File Parsing Vulnerabilities in Solid Edge

Titel

SSA-208356 V1.0: DFT File Parsing Vulnerabilities in Solid Edge

Veröffentlicht

8. Juni 2021 02:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-208356.pdf

Text

Siemens has released a new version for Solid Edge to fix two vulnerabilities that could be triggered when the application read files in DFT file format. If a user is tricked to opening of a malicious file with the affected products, this could lead to application crash, or potentially arbitrary ...

SSA-211752 V1.0: Multiple NTP-Client Related Vulnerabilities in SIMATIC NET CP 443-1 OPC UA

Titel

SSA-211752 V1.0: Multiple NTP-Client Related Vulnerabilities in SIMATIC NET CP 443-1 OPC UA

Veröffentlicht

8. Juni 2021 02:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-211752.pdf

Text

All versions of the SIMATIC NET CP 443-1 OPC UA contain multiple vulnerabilities in the underlying third party component NTP. Siemens recommends specific countermeasures for products where updates are not, or not yet available.

SSA-419820 V1.0: Denial-of-Service Vulnerability in TIM 1531 IRC

Titel

SSA-419820 V1.0: Denial-of-Service Vulnerability in TIM 1531 IRC

Veröffentlicht

8. Juni 2021 02:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-419820.pdf

Text

The latest update for TIM 1531 IRC fixes a vulnerability that could allow a remote attacker to cause a denial-of-service under certain circumstances. Siemens has released an update for the TIM 1531 IRC and recommends to update to the latest version.

SSA-522654 V1.0: Privilege Escalation Vulnerability in Mendix SAML Module

Titel

SSA-522654 V1.0: Privilege Escalation Vulnerability in Mendix SAML Module

Veröffentlicht

8. Juni 2021 02:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-522654.pdf

Text

The latest update of Mendix SAML module fixes a privilege escalation vulnerability. Mendix has released an update for the Mendix SAML module and recommends to update to the latest version.

SSA-645530 V1.0: TIFF File Parsing Vulnerability in JT2Go and Teamcenter Visualization before V13.1.0.3

Titel

SSA-645530 V1.0: TIFF File Parsing Vulnerability in JT2Go and Teamcenter Visualization before V13.1.0.3

Veröffentlicht

8. Juni 2021 02:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-645530.pdf

Text

Siemens has released version V13.1.0.3 for JT2Go and Teamcenter Visualization to fix a vulnerability that could be triggered when the products read files in TIFF file format. If a user is tricked to opening of a malicious file with the affected products, this could lead to application crash, or potentially ...

SSA-787292 V1.0: Denial-of-Service Vulnerability in SIMATIC RFID Readers

Titel

SSA-787292 V1.0: Denial-of-Service Vulnerability in SIMATIC RFID Readers

Veröffentlicht

8. Juni 2021 02:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-787292.pdf

Text

The latest updates for SIMATIC RF products fix a vulnerability that could allow an unauthorized attacker to crash the OPC UA service of the affected devices. Siemens has released updates for several affected products and recommends to update to the latest versions. Siemens is preparing further updates and recommends specific ...

SSA-293562 V3.2 (Last Update: 2021-06-08): Vulnerabilities in Industrial Products

Titel

SSA-293562 V3.2 (Last Update: 2021-06-08): Vulnerabilities in Industrial Products

Veröffentlicht

8. Juni 2021 02:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-293562.pdf

Text

Several industrial devices are affected by two vulnerabilities that could allow an attacker to cause a Denial-of-Service condition via PROFINET DCP network packets under certain circumstances. The precondition for this scenario is a direct layer 2 access to the affected products. PROFIBUS interfaces are not affected. Siemens has released updates ...

SSA-312271 V1.7 (Last Update: 2021-06-08): Unquoted Search Path Vulnerabilities in Windows-based Industrial Software Applications

Titel

SSA-312271 V1.7 (Last Update: 2021-06-08): Unquoted Search Path Vulnerabilities in Windows-based Industrial Software Applications

Veröffentlicht

8. Juni 2021 02:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-312271.pdf

Text

The latest update for affected products fix local privilege escalation vulnerabilities that could allow authorized local users with administrative privileges to execute custom code with SYSTEM level privileges. Siemens has released updates for some of the affected products, and is working on further updates. For the remaining affected products, Siemens ...

SSA-324955 V1.1 (Last Update: 2021-06-08): SAD DNS Attack in Linux Based Products

Titel

SSA-324955 V1.1 (Last Update: 2021-06-08): SAD DNS Attack in Linux Based Products

Veröffentlicht

8. Juni 2021 02:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-324955.pdf

Text

A vulnerability made public under the name SAD DNS affects Domain Name System resolvers due to a vulnerability in the Linux kernel when handling ICMP packets. The Siemens products which are affected are listed below. For more information please see https://www.saddns.net/. Siemens has released updates for several affected products and ...