Bulletins | CERT@VDE

SSA-210822 V1.0: Improper Access Control Vulnerability in Mendix Workflow Commons Module

Titel

SSA-210822 V1.0: Improper Access Control Vulnerability in Mendix Workflow Commons Module

Veröffentlicht

13. Dezember 2022 01:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-210822.pdf

Text

The Mendix Workflow Commons module improperly handles access control for some module entities. This could allow authenticated remote attackers to read or delete sensitive information. Mendix has released an update for the Mendix Workflow Commons module and recommends to update to the latest version. Note that the fix might slightly ...

SSA-593272 V1.8 (Last Update: 2022-12-13): SegmentSmack in Interniche IP-Stack based Industrial Devices

Titel

SSA-593272 V1.8 (Last Update: 2022-12-13): SegmentSmack in Interniche IP-Stack based Industrial Devices

Veröffentlicht

13. Dezember 2022 01:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-593272.pdf

Text

A vulnerability exists in affected products that could allow remote attackers to affect the availability of the devices under certain conditions. The underlying TCP stack can be forced to make very computation expensive calls for every incoming packet which can lead to a Denial-of-Service. Siemens has released updates for several ...

SSA-951513 V1.3 (Last Update: 2022-12-13): Clickjacking Vulnerability in SCALANCE S, SCALANCE X-300, X-200IRT, X-200RNA and X-2...

Titel

SSA-951513 V1.3 (Last Update: 2022-12-13): Clickjacking Vulnerability in SCALANCE S, SCALANCE X-300, X-200IRT, X-200RNA and X-200 Switch Families

Veröffentlicht

13. Dezember 2022 01:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-951513.pdf

Text

Several SCALANCE X switches contain a vulnerability that could allow an attacker to perform administrative actions if the victim is tricked into clicking on a website controlled by the attacker. The attack only works if the victim has an authenticated session on the administrative interface of the switch. Siemens has ...

SSA-930100 V1.0: Privilege Escalation Vulnerability in Simcenter STAR-CCM+

Titel

SSA-930100 V1.0: Privilege Escalation Vulnerability in Simcenter STAR-CCM+

Veröffentlicht

13. Dezember 2022 01:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-930100.pdf

Text

Simcenter STAR-CCM+ contains a privilege escalation vulnerability which could allow a local attacker with an unprivileged account to override or modify the service executable and subsequently gain elevated privileges. Siemens is preparing updates and recommends specific countermeasures for products where updates are not, or not yet available.

SSA-313313 V1.1 (Last Update: 2022-12-13): Denial of Service Vulnerability in the FTP Server of Nucleus RTOS

Titel

SSA-313313 V1.1 (Last Update: 2022-12-13): Denial of Service Vulnerability in the FTP Server of Nucleus RTOS

Veröffentlicht

13. Dezember 2022 01:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-313313.pdf

Text

The FTP server of the networking component (Nucleus NET) in Nucleus Real-Time Operating System (RTOS) does not properly release memory resources that were reserved for incomplete connection attempts by FTP clients. This could allow a remote attacker to generate a denial of service condition on devices that incorporate a vulnerable ...

SSA-312271 V2.1 (Last Update: 2022-12-13): Unquoted Search Path Vulnerability in Windows-based Industrial Software Applications

Titel

SSA-312271 V2.1 (Last Update: 2022-12-13): Unquoted Search Path Vulnerability in Windows-based Industrial Software Applications

Veröffentlicht

13. Dezember 2022 01:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-312271.pdf

Text

Several industrial products as listed below contain a local privilege escalation vulnerability that could allow a local attacker to execute arbitrary code with SYTEM privileges. Siemens has released updates for the affected products and recommends to update to the latest versions.

SSA-309571 V1.7 (Last Update: 2022-12-13): IPU 2021.1 Vulnerabilities in Siemens Industrial Products using Intel CPUs (June 2021)

Titel

SSA-309571 V1.7 (Last Update: 2022-12-13): IPU 2021.1 Vulnerabilities in Siemens Industrial Products using Intel CPUs (June 2021)

Veröffentlicht

13. Dezember 2022 01:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-309571.pdf

Text

Intel has published information on vulnerabilities in Intel products in June 2021. This advisory lists the related Siemens Industrial products affected by these vulnerabilities that can be patched by applying the corresponding BIOS update. In this advisory we summarize: “2021.1 IPU – Intel® CSME, SPS and LMS Advisory” Intel-SA-00459, “2021.1 ...

SSA-360681 V1.0: Datalogics File Parsing Vulnerabilities in Teamcenter Visualization and JT2Go

Titel

SSA-360681 V1.0: Datalogics File Parsing Vulnerabilities in Teamcenter Visualization and JT2Go

Veröffentlicht

13. Dezember 2022 01:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-360681.pdf

Text

Siemens Teamcenter Visualization and JT2Go are affected by multiple out of bounds write vulnerabilities in the APDFL library from Datalogics. If a user is tricked to open a malicious PDF file with the affected products, this could lead the application to crash or potentially lead to arbitrary code execution. Siemens ...

SSA-333517 V1.0: Multiple Vulnerabilities in SCALANCE SC-600 Family before V3.0

Titel

SSA-333517 V1.0: Multiple Vulnerabilities in SCALANCE SC-600 Family before V3.0

Veröffentlicht

13. Dezember 2022 01:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-333517.pdf

Text

Multiple vulnerabilities affecting various third-party components of the SCALANCE SC-600 family could allow an attacker to cause a denial of service condition, corrupt memory or potentially execute custom code. Siemens has released updates for the affected products and recommends to update to the latest versions.

SSA-849072 V1.0: Several Vulnerabilities in SICAM PAS before V8.06

Titel

SSA-849072 V1.0: Several Vulnerabilities in SICAM PAS before V8.06

Veröffentlicht

13. Dezember 2022 01:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-849072.pdf

Text

SICAM PAS/PQS before V8.06 is affected by three vulnerabilities which could lead to remote code execution, privilege escalation or the creation of a denial of service condition. Siemens has released several updates for SICAM PAS/PQS and recommends to update to the latest version.

SSA-321292 V1.3 (Last Update: 2022-12-13): Denial of Service in the OPC Foundation Local Discovery Server (LDS) in Industrial P...

Titel

SSA-321292 V1.3 (Last Update: 2022-12-13): Denial of Service in the OPC Foundation Local Discovery Server (LDS) in Industrial Products

Veröffentlicht

13. Dezember 2022 01:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-321292.pdf

Text

A vulnerability has been identified in the OPC Foundation Local Discovery Server (LDS) [0] of several industrial products. The vulnerability could cause a denial of service condition on the service or the device. Siemens has released updates for several affected products and recommends to update to the latest versions. Siemens ...

SSA-274900 V1.3 (Last Update: 2022-12-13): Use of Hardcoded Key in SCALANCE X Devices Under Certain Conditions

Titel

SSA-274900 V1.3 (Last Update: 2022-12-13): Use of Hardcoded Key in SCALANCE X Devices Under Certain Conditions

Veröffentlicht

13. Dezember 2022 01:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-274900.pdf

Text

SCALANCE X devices might not generate a unique random key after factory reset, and use a private key shipped with the firmware. Siemens has released updates for the affected products and recommends to update to the latest versions.

SSA-274282 V1.0: Cross Site Scripting Vulnerability in PLM Help Server V4.2

Titel

SSA-274282 V1.0: Cross Site Scripting Vulnerability in PLM Help Server V4.2

Veröffentlicht

13. Dezember 2022 01:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-274282.pdf

Text

The Siemens PLM Help Server V4.2 for documentation contains a reflected cross-site scripting vulnerability. This product has reached end of life, and security vulnerabilities are no longer patched. Siemens has released a new version of Documentation Server that resolves this vulnerability. See the chapter “Additional Information” below for more details.

SSA-792594 V1.0: Host Header Injection Vulnerability in Polarion ALM

Titel

SSA-792594 V1.0: Host Header Injection Vulnerability in Polarion ALM

Veröffentlicht

13. Dezember 2022 01:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-792594.pdf

Text

Polarion ALM contains a misconfiguration in its default Apache HTTP Server configuration that could allow an attacker to perform host header injection attacks. Siemens is preparing updates and recommends specific countermeasures for existing installations by checking for misconfigurations in configuration files.

SSA-382653 V1.0: Multiple Denial of Service Vulnerabilities in Industrial Products

Titel

SSA-382653 V1.0: Multiple Denial of Service Vulnerabilities in Industrial Products

Veröffentlicht

13. Dezember 2022 01:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-382653.pdf

Text

Affected SIMATIC firmware contains multiple vulnerabilities that could allow an unauthenticated attacker to perform a denial-of-service attack under certain conditions. Siemens has released updates for several affected products and recommends to update to the latest versions. Siemens is preparing further updates and recommends countermeasures for products where updates are not, ...

SSA-413565 V1.0: Multiple Vulnerabilities in SCALANCE Products

Titel

SSA-413565 V1.0: Multiple Vulnerabilities in SCALANCE Products

Veröffentlicht

13. Dezember 2022 01:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-413565.pdf

Text

Multiple SCALANCE devices are affected by several vulnerabilities that could allow an attacker to inject code, retrieve data as debug information as well as user CLI passwords or set the CLI to an irresponsive state. Siemens has released updates for several affected products and recommends to update to the latest ...

SSA-764417 V1.6 (Last Update: 2022-12-13): Weak Encryption Vulnerability in RUGGEDCOM ROS Devices

Titel

SSA-764417 V1.6 (Last Update: 2022-12-13): Weak Encryption Vulnerability in RUGGEDCOM ROS Devices

Veröffentlicht

13. Dezember 2022 01:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-764417.pdf

Text

The SSH server on RUGGEDCOM ROS devices is configured to offer weak ciphers by default. This could allow an unauthorized attacker in a man-in-the-middle position to read and modify any data passed over the connection between legitimate clients and the affected device. Siemens has released updates for several affected products ...

SSA-412672 V1.0: Multiple OpenSSL and OpenSSH Vulnerabilities in SCALANCE X-200RNA Switch Devices before V3.2.7

Titel

SSA-412672 V1.0: Multiple OpenSSL and OpenSSH Vulnerabilities in SCALANCE X-200RNA Switch Devices before V3.2.7

Veröffentlicht

13. Dezember 2022 01:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf

Text

SCALANCE X-200RNA switch devices before V3.2.7 contain multiple OpenSSL and OpenSSH vulnerabilities. The most severe of these vulnerabilities could allow a denial of service condition or could lead to execution of arbitrary code. Siemens has released updates for the affected products and recommends to update to the latest versions.

SSA-224632 V1.0: Improper Access Control Vulnerability in Mendix Email Connector Module

Titel

SSA-224632 V1.0: Improper Access Control Vulnerability in Mendix Email Connector Module

Veröffentlicht

13. Dezember 2022 01:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-224632.pdf

Text

The Mendix Email Connector module improperly handles access control for some module entities. This could allow authenticated remote attackers to read and manipulate sensitive information. Mendix has released an update for the Mendix Email Connector module and recommends to update to the latest version.

SSA-408105 V1.0: Buffer Overflow Vulnerabilities in OpenSSL 3.0 Affecting Siemens Products

Titel

SSA-408105 V1.0: Buffer Overflow Vulnerabilities in OpenSSL 3.0 Affecting Siemens Products

Veröffentlicht

13. Dezember 2022 01:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-408105.pdf

Text

The openSSL component, versions 3.0.0 through 3.0.6, contains two buffer overflow vulnerabilities (CVE-2022-3602, CVE-2022-3786) in the X.509 certificate verification [0]. They could allow an attacker to create a denial of service condition or execute arbitrary code on a vulnerable TLS server (if the server requests client certificate authentication), or on ...

November 2022

SSA-120378 V1.0: Multiple File Parsing Vulnerabilities in Teamcenter Visualization and JT2Go

Titel

SSA-120378 V1.0: Multiple File Parsing Vulnerabilities in Teamcenter Visualization and JT2Go

Veröffentlicht

8. November 2022 01:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-120378.pdf

Text

Siemens Teamcenter Visualization and JT2Go are affected by multiple file parsing vulnerabilities that could be triggered when the application reads malicious TIF, CGM or PDF files. If a user is tricked to open a malicious TIF, CGM or PDF file with the affected products, this could lead the application to ...

SSA-371761 V1.0: Arbitrary Code Execution Vulnerability in the Logback Component of SINEC NMS before V1.0.3

Titel

SSA-371761 V1.0: Arbitrary Code Execution Vulnerability in the Logback Component of SINEC NMS before V1.0.3

Veröffentlicht

8. November 2022 01:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-371761.pdf

Text

SINEC NMS versions before V1.0.3 are affected by a vulnerability in the logback component (CVE-2021-42550) that could allow attackers with write access to the logback configuration file to execute arbitrary code on the system. Siemens has released an update for SINEC NMS and recommends to update to the latest version.

SSA-362164 V1.2 (Last Update: 2022-11-08): Predictable Initial Sequence Numbers in the TCP/IP Stack of Nucleus RTOS

Titel

SSA-362164 V1.2 (Last Update: 2022-11-08): Predictable Initial Sequence Numbers in the TCP/IP Stack of Nucleus RTOS

Veröffentlicht

8. November 2022 01:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-362164.pdf

Text

The networking component (Nucleus NET) in Nucleus Real-Time Operating System (RTOS) use Initial Sequence Numbers for TCP-Sessions that are predictable. Siemens has released updates for several affected products and recommends to update to the latest versions. Siemens recommends specific countermeasures for products where updates are not available.

SSA-501891 V1.1 (Last Update: 2022-11-08): Cross-Site Scripting Vulnerability in SCALANCE X-200 and X-200IRT Families

Titel

SSA-501891 V1.1 (Last Update: 2022-11-08): Cross-Site Scripting Vulnerability in SCALANCE X-200 and X-200IRT Families

Veröffentlicht

8. November 2022 01:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-501891.pdf

Text

There is a cross-site scripting vulnerability that affects the SCALANCE switches. This vulnerability if used by a threat actor could result in the stealing of session cookies and session hijacking. Siemens has released updates for the affected products and recommends to update to the latest versions.