Bulletins | CERT@VDE

SSA-693808 V1.0: Deserialization Vulnerability in Siemens Engineering Platforms

Titel

SSA-693808 V1.0: Deserialization Vulnerability in Siemens Engineering Platforms

Veröffentlicht

12. August 2025 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-693808.html

Text

Affected products do not properly restrict access permissions to a local Windows Named Pipe and do not properly sanitize user-controllable input sent to that Named Pipe. This could allow a local authenticated attacker to cause a type confusion and execute arbitrary code within the affected application and its privileges. Siemens ...

SSA-764417 V1.9 (Last Update: 2025-08-12): Weak Encryption Vulnerability in RUGGEDCOM ROS Devices

Titel

SSA-764417 V1.9 (Last Update: 2025-08-12): Weak Encryption Vulnerability in RUGGEDCOM ROS Devices

Veröffentlicht

12. August 2025 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-764417.html

Text

The SSH server on RUGGEDCOM ROS devices is configured to offer weak ciphers by default. This could allow an unauthorized attacker in a man-in-the-middle position to read and modify any data passed over the connection between legitimate clients and the affected device. Siemens has released new versions for the affected ...

SSA-770902 V1.2 (Last Update: 2025-08-12): Denial of Service Vulnerability in the Web Server of RUGGEDCOM ROS Devices

Titel

SSA-770902 V1.2 (Last Update: 2025-08-12): Denial of Service Vulnerability in the Web Server of RUGGEDCOM ROS Devices

Veröffentlicht

12. August 2025 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-770902.html

Text

A denial of service vulnerability could allow an unauthorized attacker to cause total loss of availability in the web server of the affected devices. Siemens has released new versions for several affected products and recommends to update to the latest versions. Siemens recommends specific countermeasures for products where fixes are ...

SSA-787941 V1.5 (Last Update: 2025-08-12): Denial of Service Vulnerability in RUGGEDCOM ROS devices

Titel

SSA-787941 V1.5 (Last Update: 2025-08-12): Denial of Service Vulnerability in RUGGEDCOM ROS devices

Veröffentlicht

12. August 2025 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-787941.html

Text

RUGGEDCOM ROS-based devices are vulnerable to a denial of service attack (Slowloris). By sending partial HTTP requests nonstop, with none completed, the affected web servers will be waiting for the completion of each request, occupying all available HTTP connections. The web server recovers by itself once the attack ends. Siemens ...

SSA-794185 V1.1 (Last Update: 2025-08-12): RADIUS Protocol Susceptible to Forgery Attacks (CVE-2024-3596) - Impact to SIPROTEC,...

Titel

SSA-794185 V1.1 (Last Update: 2025-08-12): RADIUS Protocol Susceptible to Forgery Attacks (CVE-2024-3596) - Impact to SIPROTEC, SICAM and Related Products

Veröffentlicht

12. August 2025 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-794185.html

Text

This advisory documents the impact of CVE-2024-3596 (also dubbed “Blastradius”), a vulnerability in the RADIUS protocol, to SIPROTEC, SICAM and related products. The vulnerability could allow on-path attackers, located between a Network Access Server (the RADIUS client, e.g., a SICAM device) and a RADIUS server, to forge Access-Request packets in ...

SSA-800126 V1.1 (Last Update: 2025-08-12): Deserialization Vulnerability in Siemens Engineering Platforms before V20

Titel

SSA-800126 V1.1 (Last Update: 2025-08-12): Deserialization Vulnerability in Siemens Engineering Platforms before V20

Veröffentlicht

12. August 2025 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-800126.html

Text

Affected products do not properly sanitize user-controllable input when parsing files. This could allow an attacker to cause a type confusion and execute arbitrary code within the affected application. Siemens has released new versions for several affected products and recommends to update to the latest versions. Siemens is preparing further ...

SSA-840800 V1.5 (Last Update: 2025-08-12): Code Injection Vulnerability in RUGGEDCOM ROS

Titel

SSA-840800 V1.5 (Last Update: 2025-08-12): Code Injection Vulnerability in RUGGEDCOM ROS

Veröffentlicht

12. August 2025 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-840800.html

Text

RUGGEDCOM ROS-based devices are vulnerable to a web-based code injection attack. To execute this attack, it is necessary to access the system via the Command Line Interface (CLI). Siemens has released new versions for several affected products and recommends to update to the latest versions. Siemens recommends specific countermeasures for ...

SSA-856721 V1.3 (Last Update: 2025-08-12): Vulnerability in RUGGEDCOM Discovery Protocol (RCDP) of Industrial Communication Dev...

Titel

SSA-856721 V1.3 (Last Update: 2025-08-12): Vulnerability in RUGGEDCOM Discovery Protocol (RCDP) of Industrial Communication Devices

Veröffentlicht

12. August 2025 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-856721.html

Text

The RUGGEDCOM RCDP protocol is not properly configured after commissioning of RUGGEDCOM ROS based devices and some SCALANCE X switch models and could allow unauthenticated remote users to perform administrative operations. An attacker must be in the same adjacent network and the RCDP daemon must be enabled in order to ...

Donnerstag, 07.08.2025

Yealink IP Phones and RPS (Redirect and Provisioning Service)

Titel

Yealink IP Phones and RPS (Redirect and Provisioning Service)

Veröffentlicht

7. August 2025 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-25-219-08

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 5.3 ATTENTION: Exploitable remotely/Low attack complexity Vendor: Yealink Equipment: IP Phones Vulnerability: Improper Restriction of Excessive Authentication Attempts, Allocation of Resources Without Limits or Throttling, Incorrect Authorization, Improper Certificate Validation 2. RISK EVALUATION Successful exploitation of these vulnerabilities could result in an information ...

EG4 Electronics EG4 Inverters

Titel

EG4 Electronics EG4 Inverters

Veröffentlicht

7. August 2025 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-25-219-07

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 9.2 ATTENTION: Exploitable remotely/low attack complexity Vendor: EG4 Electronics Equipment: EG4 Inverters Vulnerabilities: Cleartext Transmission of Sensitive Information, Download of Code Without Integrity Check, Observable Discrepancy, Improper Restriction of Excessive Authentication Attempts 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow an ...

Delta Electronics DIAView

Titel

Delta Electronics DIAView

Veröffentlicht

7. August 2025 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-25-219-01

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 9.3 ATTENTION: Exploitable remotely/low attack complexity Vendor: Delta Electronics Equipment: DIAView Vulnerability: Improper Limitation of a Pathname to a Restricted Directory 2. RISK EVALUATION Successful exploitation of this vulnerability may allow a remote attacker to read or write files on the affected device. ...

Johnson Controls FX80 and FX90

Titel

Johnson Controls FX80 and FX90

Veröffentlicht

7. August 2025 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-25-219-02

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.4 ATTENTION: Exploitable remotely/low attack complexity Vendor: Johnson Controls Inc. Equipment: FX80 and FX90 Vulnerability: Dependency on Vulnerable Third-Party Component 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to compromise the device's configuration files. 3. TECHNICAL DETAILS 3.1 AFFECTED ...

Burk Technology ARC Solo

Titel

Burk Technology ARC Solo

Veröffentlicht

7. August 2025 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-25-219-03

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 9.3 ATTENTION: Exploitable remotely/Low attack complexity Vendor: Burk Technology Equipment: ARC Solo Vulnerability: Missing Authentication for Critical Function 2. RISK EVALUATION Successful exploitation of this vulnerability could result in an attacker gaining access to the device, locking out authorized users, or disrupting operations. ...

Packet Power EMX and EG

Titel

Packet Power EMX and EG

Veröffentlicht

7. August 2025 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-25-219-05

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 9.3 ATTENTION: Exploitable remotely/low attack complexity Vendor: Packet Power Equipment: EMX, EG Vulnerability: Missing Authentication for Critical Function 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to gain full access to the device without authentication. 3. TECHNICAL DETAILS 3.1 ...

Dreame Technology iOS and Android Mobile Applications

Titel

Dreame Technology iOS and Android Mobile Applications

Veröffentlicht

7. August 2025 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-25-219-06

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.5 ATTENTION: Low attack complexity Vendor: Dreame Technology Equipment: Dreamehome and MOVAhome mobile applications Vulnerability: Improper Certificate Validation 2. RISK EVALUATION Successful exploitation of this vulnerability could result in unauthorized information disclosure. 3. TECHNICAL DETAILS 3.1 AFFECTED PRODUCTS The following versions of the ...

Dienstag, 05.08.2025

Mitsubishi Electric Iconics Digital Solutions Multiple Products

Titel

Mitsubishi Electric Iconics Digital Solutions Multiple Products

Veröffentlicht

5. August 2025 14:00

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-25-217-01

Text

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 4.1 ATTENTION: Low attack complexity Vendor: Mitsubishi Electric Iconics Digital Solutions, Mitsubishi Electric Equipment: ICONICS Product Suite and Mitsubishi Electric MC Works64 Vulnerability: Windows Shortcut Following (.LNK) 2. RISK EVALUATION Successful exploitation of this vulnerability could result in information tampering. 3. TECHNICAL DETAILS ...