Bulletins | CERT@VDE

Siemens Web Installer

Titel

Siemens Web Installer

Veröffentlicht

14. August 2025 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-25-226-22

Text

As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories (CERT Services | Services | Siemens Global). View CSAF 1. EXECUTIVE SUMMARY ...

Siemens SIMOTION SCOUT, SIMOTION SCOUT TIA, and SINAMICS STARTER

Titel

Siemens SIMOTION SCOUT, SIMOTION SCOUT TIA, and SINAMICS STARTER

Veröffentlicht

14. August 2025 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-25-226-18

Text

Rockwell Automation Micro800

Titel

Rockwell Automation Micro800

Veröffentlicht

14. August 2025 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-25-226-25

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 9.3 ATTENTION: Exploitable remotely/low attack complexity Vendor: Rockwell Automation Equipment: Micro800 Vulnerabilities: Dependency on Vulnerable Third-Party Component, Improper Input Validation 2. RISK EVALUATION Successful exploitation of these vulnerabilities could result in remote code execution or may lead to privilege escalation. 3. TECHNICAL DETAILS ...

Rockwell Automation FLEX 5000 I/O

Titel

Rockwell Automation FLEX 5000 I/O

Veröffentlicht

14. August 2025 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-25-226-26

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.7 ATTENTION: Exploitable remotely/Low attack complexity Vendor: Rockwell Automation Equipment: FLEX 5000 I/O Vulnerabilities: Improper Input Validation 2. RISK EVALUATION Successful exploitation of these vulnerabilities could create a denial-of-service condition. 3. TECHNICAL DETAILS 3.1 AFFECTED PRODUCTS The following version of FLEX 5000 I/O ...

SSA-201595 V1.0: Privilege Escalation Vulnerability in WIBU CodeMeter Runtime Affecting the Desigo CC Product Family and SENTRO...

Titel

SSA-201595 V1.0: Privilege Escalation Vulnerability in WIBU CodeMeter Runtime Affecting the Desigo CC Product Family and SENTRON Powermanager

Veröffentlicht

14. August 2025 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-201595.html

Text

Versions V5.0 through V8 of the Desigo CC product family (Desigo CC, Desigo CC Compact, Desigo CC Connect, Cerberus DMS), as well as the Desigo CC-based SENTRON Powermanager, are affected by a vulnerability in the underlying third-party component WIBU Systems CodeMeter Runtime. Successful exploitation of this vulnerability could allow privilege ...

Vulnerabilities in ctrlX OS - Setup

BOSCH PSIRT

Titel

Vulnerabilities in ctrlX OS - Setup

Veröffentlicht

14. August 2025 02:00

URL

https://psirt.bosch.com/security-advisories/bosch-sa-129652.html

Text

BOSCH-SA-129652: Vulnerabilities in ctrlX OS - Setup

Denial of Service on Rexroth Fieldbus Couplers

BOSCH PSIRT

Titel

Denial of Service on Rexroth Fieldbus Couplers

Veröffentlicht

14. August 2025 02:00

URL

https://psirt.bosch.com/security-advisories/bosch-sa-757244.html

Text

BOSCH-SA-757244: Several fieldbus couplers sold by Bosch Rexroth contain technology from Phoenix Contact. The manufacturer published a security bulletin about a weakness in the web-based administration interface. A successful attack leads to an overload of the device and the hardware watchdog is triggered. Process data behaves according to the configured ...

SSA-395458 V1.0: Account Hijacking Vulnerability in Mendix SAML Module

Titel

SSA-395458 V1.0: Account Hijacking Vulnerability in Mendix SAML Module

Veröffentlicht

14. August 2025 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-395458.html

Text

Mendix SAML module contains a vulnerability that could allow unauthenticated remote attackers to hijack an account in specific SSO configurations. Mendix has provided fix releases for the Mendix SAML module and recommends to update to the latest version.

Mittwoch, 13.08.2025

SSA-028723 V1.1 (Last Update: 2025-08-13): Multiple OpenSSL Vulnerabilities in BFCClient Before V2.17

Titel

SSA-028723 V1.1 (Last Update: 2025-08-13): Multiple OpenSSL Vulnerabilities in BFCClient Before V2.17

Veröffentlicht

13. August 2025 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-028723.html

Text

Siemens BFCClient contains multiple vulnerabilities in the integrated OpenSSL component that could allow an attacker to read memory contents, to change the application behaviour or to create a denial of service condition. Siemens has released a new version for BFCClient and recommends to update to the latest version.

Dienstag, 12.08.2025

https://www.cisa.gov/news-events/ics-advisories/icsa-25-224-04

AVEVA PI Integrator

Titel

AVEVA PI Integrator

Veröffentlicht

12. August 2025 14:00

URL

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 7.1 ATTENTION: Exploitable remotely/low attack complexity Vendor: AVEVA Equipment: PI Integrator Vulnerabilities: Unrestricted Upload of File with Dangerous Type, Insertion of Sensitive Information into Sent Data 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to disclose sensitive information, or ...

Schneider Electric EcoStruxure Power Monitoring Expert

Titel

Schneider Electric EcoStruxure Power Monitoring Expert

Veröffentlicht

12. August 2025 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-25-224-03

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.7 ATTENTION: Exploitable remotely/low attack complexity Vendor: Schneider Electric Equipment: EcoStruxure Power Monitoring Expert Vulnerabilities: Path Traversal, Deserialization of Untrusted Data, Server-Side Request Forgery 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow a remote attacker to read arbitrary files from the ...

Johnson Controls iSTAR Ultra, iSTAR Ultra SE, iSTAR Ultra G2, iSTAR Ultra G2 SE, iSTAR Edge G2

Titel

Johnson Controls iSTAR Ultra, iSTAR Ultra SE, iSTAR Ultra G2, iSTAR Ultra G2 SE, iSTAR Edge G2

Veröffentlicht

12. August 2025 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-25-224-02

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.7 ATTENTION: Exploitable remotely/low attack complexity Vendor: Johnson Controls Equipment: iSTAR Ultra, iSTAR Ultra SE, iSTAR Ultra G2, iSTAR, ULTRA G2 SE, iSTAR Edge G2 Vulnerabilities: OS Command Injection, Insufficient Verification of Data Authenticity, Use of Default Credentials, Missing Protection Mechanism for Alternate ...

Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, Cobalt Share

Titel

Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, Cobalt Share

Veröffentlicht

12. August 2025 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-25-224-01

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.4 ATTENTION: Low attack complexity Vendor: Ashlar-Vellum Equipment: Cobalt, Xenon, Argon, Lithium, Cobalt Share Vulnerabilities: Out-of-bounds Write, Out-of-bounds Read, Heap-based Buffer Overflow 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to disclose information and execute arbitrary code. 3. TECHNICAL ...

SSA-529291 V1.0: Information Disclosure Vulnerabilities in SICAM Q100/Q200

Titel

SSA-529291 V1.0: Information Disclosure Vulnerabilities in SICAM Q100/Q200

Veröffentlicht

12. August 2025 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-529291.html

Text

SICAM Q100 and Q200 devices are affected by two information disclosure vulnerabilities that could allow an authenticated local attacker to extract the SMTP account password and use the configured SMTP service for arbitrary purposes. Siemens has released new versions for the affected products and recommends to update to the latest ...

SSA-517338 V1.0: Multiple Vulnerabilities in SINEC Traffic Analyzer Before V3.0

Titel

SSA-517338 V1.0: Multiple Vulnerabilities in SINEC Traffic Analyzer Before V3.0

Veröffentlicht

12. August 2025 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-517338.html

Text

SINEC Traffic Analyzer before V3.0 is affected by multiple vulnerabilities. Siemens has released a new version for SINEC Traffic Analyzer and recommends to update to the latest version. Siemens is preparing further fix versions and recommends countermeasures for products where fixes are not, or not yet available.

SSA-493787 V1.0: Arbitrary Code Execution Vulnerability in SIMATIC RTLS Locating Manager Before V3.2

Titel

SSA-493787 V1.0: Arbitrary Code Execution Vulnerability in SIMATIC RTLS Locating Manager Before V3.2

Veröffentlicht

12. August 2025 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-493787.html

Text

SIMATIC RTLS Locating Manager Before V3.2 contains an improper input validation vulnerability that could allow an authenticated remote attacker to execute arbitrary code with high privileges. Siemens has released a new version for SIMATIC RTLS Locating Manager and recommends to update to the latest version.

SSA-493396 V1.0: Deserialization Vulnerability in Siemens Engineering Platforms

Titel

SSA-493396 V1.0: Deserialization Vulnerability in Siemens Engineering Platforms

Veröffentlicht

12. August 2025 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-493396.html

Text

Affected products do not properly sanitize user-controllable input when parsing project files. This could allow an attacker to cause a type confusion and execute arbitrary code within the affected application. Siemens has released new versions for several affected products and recommends to update to the latest versions. Siemens is preparing ...

SSA-460466 V1.1 (Last Update: 2025-08-12): Denial of Service Vulnerability in TIA Project-Server and TIA Portal

Titel

SSA-460466 V1.1 (Last Update: 2025-08-12): Denial of Service Vulnerability in TIA Project-Server and TIA Portal

Veröffentlicht

12. August 2025 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-460466.html

Text

A vulnerability in TIA Project Server and TIA Portal could allow an attacker to cause a denial of service condition. Siemens has released new versions for several affected products and recommends to update to the latest versions. Siemens is preparing further fix versions and recommends countermeasures for products where fixes ...

SSA-446307 V1.1 (Last Update: 2025-08-12): Authentication Bypass Vulnerability in BMC (CVE-2024-54085) affects SIMATIC IPC RS-828A

Titel

SSA-446307 V1.1 (Last Update: 2025-08-12): Authentication Bypass Vulnerability in BMC (CVE-2024-54085) affects SIMATIC IPC RS-828A

Veröffentlicht

12. August 2025 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-446307.html

Text

SIMATIC IPC RS-828A is affected by an authentication bypass vulnerability in the Redfish interface of its Baseboard Management Controller (BMC) that could allow an attacker to gain unauthorized access and compromise confidentiality, integrity and availability of the BMC and thus the entire system. Siemens has released a new version for ...

SSA-400089 V1.0: Denial of Service Vulnerability in SIPROTEC 4 and SIPROTEC 4 Compact

Titel

SSA-400089 V1.0: Denial of Service Vulnerability in SIPROTEC 4 and SIPROTEC 4 Compact

Veröffentlicht

12. August 2025 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-400089.html

Text

SIPROTEC 4 and SIPROTEC 4 Compact devices contain a vulnerability that could allow an unauthenticated remote attacker to cause a denial of service condition. Siemens has released new versions for several affected products and recommends to update to the latest versions. Siemens is preparing further fix versions and recommends countermeasures ...

SSA-398330 V2.7 (Last Update: 2025-08-12): Vulnerabilities in the additional GNU/Linux subsystem of the SIMATIC S7-1500 CPU 151...

Titel

SSA-398330 V2.7 (Last Update: 2025-08-12): Vulnerabilities in the additional GNU/Linux subsystem of the SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP >= V3.1.0 and < V3.1.5

Veröffentlicht

12. August 2025 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-398330.html

Text

Multiple vulnerabilities have been identified in the additional GNU/Linux subsystem of the firmware version >= V3.1.0 and < V3.1.5 for the SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP (incl. SIPLUS variant). These GNU/Linux vulnerabilities have been externally identified. Siemens has released new versions for the affected products and recommends to update ...

SSA-392859 V1.1 (Last Update: 2025-08-12): Local Arbitrary Code Execution Vulnerability in Siemens Engineering Platforms before...

Titel

SSA-392859 V1.1 (Last Update: 2025-08-12): Local Arbitrary Code Execution Vulnerability in Siemens Engineering Platforms before V20

Veröffentlicht

12. August 2025 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-392859.html

Text

Affected products contain a local arbitrary code execution vulnerability that could allow an attacker to perform actions against the operation system of that environment. Siemens has released new versions for several affected products and recommends to update to the latest versions. Siemens is preparing further fix versions and recommends countermeasures ...

SSA-382999 V1.0: Multiple Vulnerabilities in Opcenter Quality Before V2506

Titel

SSA-382999 V1.0: Multiple Vulnerabilities in Opcenter Quality Before V2506

Veröffentlicht

12. August 2025 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-382999.html

Text

The Opcenter Quality is affected by multiple vulnerabilities in the SmartClient modules Opcenter QL Home (SC), SOA Audit and SOA Cockpit. Siemens has released new versions for the affected products and recommends to update to the latest versions.

SSA-355557 V1.0: Multiple Vulnerabilities in Third-Party Components in SINEC OS before V3.2

Titel

SSA-355557 V1.0: Multiple Vulnerabilities in Third-Party Components in SINEC OS before V3.2

Veröffentlicht

12. August 2025 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-355557.html

Text

SINEC OS before V3.2 contains third-party components with multiple vulnerabilities. Siemens has released new versions for the affected products and recommends to update to the latest versions.