Bulletins | CERT@VDE

SSA-784301 V1.0: Multiple Vulnerabilities in SINEC NMS Before V3.0

Titel

SSA-784301 V1.0: Multiple Vulnerabilities in SINEC NMS Before V3.0

Veröffentlicht

13. August 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-784301.html

Text

SINEC NMS before V3.0 is affected by multiple vulnerabilities. Siemens has released a new version for SINEC NMS and recommends to update to the latest version.

SSA-686975 V1.5 (Last Update: 2024-08-13): IPU 2022.3 Vulnerabilities in Siemens Industrial Products using Intel CPUs

Titel

SSA-686975 V1.5 (Last Update: 2024-08-13): IPU 2022.3 Vulnerabilities in Siemens Industrial Products using Intel CPUs

Veröffentlicht

13. August 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-686975.html

Text

Intel has published information on vulnerabilities in Intel products in November 2022. This advisory lists the related Siemens Industrial products affected by these vulnerabilities that can be patched by applying the corresponding BIOS update (“2022.3 IPU – BIOS Advisory” Intel-SA-00688). Siemens is preparing updates and recommends specific countermeasures for products ...

SSA-659443 V1.0: Local Code Execution Vulnerabilities in COMOS Before V10.5

Titel

SSA-659443 V1.0: Local Code Execution Vulnerabilities in COMOS Before V10.5

Veröffentlicht

13. August 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-659443.html

Text

COMOS before V10.5 is affected by two local code execution vulnerabilities in the integrated Open Design Alliance Drawings SDK. Siemens has released a new version for COMOS and recommends to update to the latest version.

SSA-813746 V1.1 (Last Update: 2024-08-13): BadAlloc Vulnerabilities in SCALANCE X-200, X-200IRT, and X-300 Switch Families

Titel

SSA-813746 V1.1 (Last Update: 2024-08-13): BadAlloc Vulnerabilities in SCALANCE X-200, X-200IRT, and X-300 Switch Families

Veröffentlicht

13. August 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-813746.html

Text

Siemens has released a new firmware version for SCALANCE X-200 and X-200 IRT switches that address Bad Alloc vulnerabilities in the underlying operating system and recommends to update to the latest versions. Siemens recommends countermeasures for products where updates are not, or not yet available.

SSA-822518 V1.1 (Last Update: 2024-08-13): Multiple Vulnerabilities in Palo Alto Networks Virtual NGFW Before V11.0.1 on RUGGED...

Titel

SSA-822518 V1.1 (Last Update: 2024-08-13): Multiple Vulnerabilities in Palo Alto Networks Virtual NGFW Before V11.0.1 on RUGGEDCOM APE1808 Devices

Veröffentlicht

13. August 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-822518.html

Text

Palo Alto Networks has published [1] information on vulnerabilities in PAN-OS. This advisory lists the related Siemens Industrial products affected by these vulnerabilities. Siemens is preparing updates and recommends specific countermeasures for products where updates are not, or not yet available. Customers are advised to consult and implement the workarounds ...

SSA-640968 V1.2 (Last Update: 2024-08-13): Untrusted Search Path Vulnerability in TIA Project-Server formerly known as TIA Mult...

Titel

SSA-640968 V1.2 (Last Update: 2024-08-13): Untrusted Search Path Vulnerability in TIA Project-Server formerly known as TIA Multiuser Server

Veröffentlicht

13. August 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-640968.html

Text

TIA Project-Server formerly known as TIA Multiuser Server contains an untrusted search path vulnerability that could allow an attacker to escalate privileges, when tricking a legitimate user to start the service from an attacker controlled path. Siemens has released updates for several affected products and recommends to update to the ...

SSA-116924 V1.2 (Last Update: 2024-08-13): Path Traversal Vulnerability in TIA Portal

Titel

SSA-116924 V1.2 (Last Update: 2024-08-13): Path Traversal Vulnerability in TIA Portal

Veröffentlicht

13. August 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-116924.html

Text

TIA Portal contains a path traversal vulnerability that could allow the creation or overwrite of arbitrary files in the engineering system. If the user is tricked to open a malicious PC system configuration file, an attacker could exploit this vulnerability to achieve arbitrary code execution. Siemens has released new versions ...

02.08.2024

SSA-857368 V1.0: Multiple Vulnerabilities in Omnivise T3000

Titel

SSA-857368 V1.0: Multiple Vulnerabilities in Omnivise T3000

Veröffentlicht

2. August 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-857368.html

Text

Omnivise T3000 contains multiple vulnerabilities that could allow an attacker to escalate privileges. Siemens Energy has released patches for several affected products and recommends to apply the patches. Siemens Energy is preparing further fixes for versions still under maintenance and recommends countermeasures for products where fixes are not, or not ...

Juli 2024

22.07.2024

SSA-071402 V1.0: Multiple Vulnerabilities in SICAM Products

Titel

SSA-071402 V1.0: Multiple Vulnerabilities in SICAM Products

Veröffentlicht

22. Juli 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-071402.html

Text

Multiple SICAM products are affected by unauthorized password reset and firmware downgrade vulnerabilities that could lead to privilege escalation and potential leak of information, namely: SICAM A8000 Device firmware CPCI85 for CP-8031/CP-8050 SICAM EGS Device firmware CPCI85 SICAM 8 Software Solution SICORE Siemens has released new firmware versions for the ...

22.07.2024

SSA-723487 V1.1 (Last Update: 2024-07-22): RADIUS Protocol Susceptible to Forgery Attacks (CVE-2024-3596) - Impact to SCALANCE,...

Titel

SSA-723487 V1.1 (Last Update: 2024-07-22): RADIUS Protocol Susceptible to Forgery Attacks (CVE-2024-3596) - Impact to SCALANCE, RUGGEDCOM and Related Products

Veröffentlicht

22. Juli 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-723487.html

Text

This advisory documents the impact of CVE-2024-3596 (also dubbed “Blastradius”), a vulnerability in the RADIUS protocol, to SCALANCE, RUGGEDCOM and related products. The vulnerability could allow on-path attackers, located between a Network Access Server (the RADIUS client, e.g., SCALANCE or RUGGEDCOM devices) and a RADIUS server (e.g., SINEC INS), to ...

SSA-484086 V1.1 (Last Update: 2024-07-09): Multiple Vulnerabilities in SINEMA Remote Connect Server before V3.1

Titel

SSA-484086 V1.1 (Last Update: 2024-07-09): Multiple Vulnerabilities in SINEMA Remote Connect Server before V3.1

Veröffentlicht

9. Juli 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-484086.html

Text

SINEMA Remote Connect Server is affected by multiple vulnerabilities, including A cross-site scripting vulnerability in an error message pop up window (CVE-2022-29034) Several authentication bypass, privilege escalation and integrity check vulnerabilities (CVE-2022-32251 through -32261) A command injection vulnerability in the file upload service (CVE-2022-32262) A chosen-plaintext attack against HTTP over ...

SSA-473245 V2.7 (Last Update: 2024-07-09): Denial of Service Vulnerability in Profinet Devices

Titel

SSA-473245 V2.7 (Last Update: 2024-07-09): Denial of Service Vulnerability in Profinet Devices

Veröffentlicht

9. Juli 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-473245.html

Text

A vulnerability in affected devices could allow an attacker to perform a denial of service attack if a large amount of specially crafted UDP packets are sent to the device. Siemens has released new versions for several affected products and recommends to update to the latest versions. Siemens recommends specific ...

SSA-446448 V2.2 (Last Update: 2024-07-09): Denial of Service Vulnerability in PROFINET Stack Integrated on Interniche Stack

Titel

SSA-446448 V2.2 (Last Update: 2024-07-09): Denial of Service Vulnerability in PROFINET Stack Integrated on Interniche Stack

Veröffentlicht

9. Juli 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-446448.html

Text

The PROFINET (PNIO) stack, when integrated with the Interniche IP stack, contains a vulnerability that could allow an attacker to cause a denial of service condition on affected industrial products. Siemens has released new versions for several affected products and recommends to update to the latest versions. Siemens recommends specific ...

SSA-455250 V1.2 (Last Update: 2024-07-09): Multiple Vulnerabilities in Palo Alto Networks Virtual NGFW on RUGGEDCOM APE1808 dev...

Titel

SSA-455250 V1.2 (Last Update: 2024-07-09): Multiple Vulnerabilities in Palo Alto Networks Virtual NGFW on RUGGEDCOM APE1808 devices before V11.1.2-h3

Veröffentlicht

9. Juli 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-455250.html

Text

Palo Alto Networks has published [1] information on vulnerabilities in PAN-OS. This advisory lists the related Siemens Industrial products affected by these vulnerabilities. Siemens has released a new version of Palo Alto Networks Virtual NGFW for RUGGEDCOM APE1808 and recommends to update to the latest version. Customers are advised to ...

SSA-883918 V1.0: Information Disclosure Vulnerability in SIMATIC WinCC

Titel

SSA-883918 V1.0: Information Disclosure Vulnerability in SIMATIC WinCC

Veröffentlicht

9. Juli 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-883918.html

Text

Multiple versions of SIMATIC WinCC and SIMATIC PCS 7 do not properly handle certain requests to their web application (WinCC WebNavigator, PCS 7 Web Serser, and PCS 7 Web Diagnostics Server), which may lead to the leak of privileged information. This could allow an unauthenticated remote attacker to retrieve information ...

SSA-868282 V1.0: Multiple Vulnerabilities in SINEMA Remote Connect Client before V3.2 HF1

Titel

SSA-868282 V1.0: Multiple Vulnerabilities in SINEMA Remote Connect Client before V3.2 HF1

Veröffentlicht

9. Juli 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-868282.html

Text

SINEMA Remote Connect Server before V3.2 HF1 is affected by multiple vulnerabilities. Siemens has released a new version for SINEMA Remote Connect Client and recommends to update to the latest version.

SSA-998949 V1.0: Hard-coded Default Encryption Key in Mendix Encryption Module V10.0.0 and V10.0.1

Titel

SSA-998949 V1.0: Hard-coded Default Encryption Key in Mendix Encryption Module V10.0.0 and V10.0.1

Veröffentlicht

9. Juli 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-998949.html

Text

The Mendix Encryption module versions V10.0.0 and V10.0.1 define a specific hard-coded default value for the EncryptionKey constant, which is used in projects where no individual EncryptionKey was specified. This could allow to an attacker to decrypt any encrypted project data, as the default encryption key can be considered compromised. ...

SSA-981975 V1.2 (Last Update: 2024-07-09): Information Disclosure Vulnerability in Intel-CPUs (CVE-2022-40982) Impacting SIMATI...

Titel

SSA-981975 V1.2 (Last Update: 2024-07-09): Information Disclosure Vulnerability in Intel-CPUs (CVE-2022-40982) Impacting SIMATIC IPCs

Veröffentlicht

9. Juli 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-981975.html

Text

Several Intel-CPU based SIMATIC IPCs are affected by an information exposure vulnerability (CVE-2022-40982) in the CPU that could allow an authenticated local user to potentially read other users’ data [1]. The issue is also known as “Gather Data Sampling” (GDS) or Downfall Attacks. For details refer to the chapter “Additional ...

SSA-962515 V1.1 (Last Update: 2024-07-09): Out of Bounds Read Vulnerability in Industrial Products

Titel

SSA-962515 V1.1 (Last Update: 2024-07-09): Out of Bounds Read Vulnerability in Industrial Products

Veröffentlicht

9. Juli 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-962515.html

Text

Several industrial products contain an out of bounds read vulnerability that could allow an attacker to cause a Blue Screen of Death (BSOD) crash of the underlying Windows kernel, leading to denial of service condition. Siemens has released new versions for several affected products and recommends to update to the ...

SSA-928781 V1.0: Multiple Vulnerabilities in SINEMA Remote Connect Server before V3.2 HF1

Titel

SSA-928781 V1.0: Multiple Vulnerabilities in SINEMA Remote Connect Server before V3.2 HF1

Veröffentlicht

9. Juli 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-928781.html

Text

SINEMA Remote Connect Server before V3.2 HF1 is affected by multiple vulnerabilities. Siemens has released a new version for SINEMA Remote Connect Server and recommends to update to the latest version.

SSA-832273 V1.4 (Last Update: 2024-07-09): Multiple Vulnerabilities in Fortigate NGFW before V7.4.3 on RUGGEDCOM APE1808 devices

Titel

SSA-832273 V1.4 (Last Update: 2024-07-09): Multiple Vulnerabilities in Fortigate NGFW before V7.4.3 on RUGGEDCOM APE1808 devices

Veröffentlicht

9. Juli 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-832273.html

Text

Fortinet has published information on vulnerabilities in FORTIOS. This advisory lists the related Siemens Industrial products. Siemens has released a new version of Fortigate NGFW for RUGGEDCOM APE1808 and recommends to update to the latest version. Siemens recommends to consult and implement the workarounds provided in Fortinet’s upstream security notifications.

SSA-398330 V1.7 (Last Update: 2024-07-09): Vulnerabilities in the additional GNU/Linux subsystem of the SIMATIC S7-1500 CPU 151...

Titel

SSA-398330 V1.7 (Last Update: 2024-07-09): Vulnerabilities in the additional GNU/Linux subsystem of the SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP V3.1

Veröffentlicht

9. Juli 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-398330.html

Text

Multiple vulnerabilities have been identified in the additional GNU/Linux subsystem of the firmware version V3.1 for the SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP (incl. SIPLUS variant). These GNU/Linux vulnerabilities have been externally identified. Siemens is preparing fix versions and recommends specific countermeasures for products where fixes are not, or not ...

SSA-064222 V1.0: Multiple File Parsing Vulnerabilities in Simcenter Femap before V2406

Titel

SSA-064222 V1.0: Multiple File Parsing Vulnerabilities in Simcenter Femap before V2406

Veröffentlicht

9. Juli 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-064222.html

Text

Simcenter Femap contains multiple file parsing vulnerabilities that could be triggered when the application reads files in IGS, BDF or BMP file formats. If a user is tricked to open a malicious file with any of the affected products, this could lead the application to crash or potentially lead to ...

SSA-381581 V1.0: Multiple Vulnerabilities in SINEMA Remote Connect Server before V3.2 SP1

Titel

SSA-381581 V1.0: Multiple Vulnerabilities in SINEMA Remote Connect Server before V3.2 SP1

Veröffentlicht

9. Juli 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-381581.html

Text

SINEMA Remote Connect Server before V3.2 SP1 is affected by multiple vulnerabilities. Siemens has released a new version for SINEMA Remote Connect Server and recommends to update to the latest version.