Bulletins | CERT@VDE

SSA-496292 V1.0: Remote Code Execution Vulnerability in POWER METER SICAM Q100

Titel

SSA-496292 V1.0: Remote Code Execution Vulnerability in POWER METER SICAM Q100

Veröffentlicht

14. Dezember 2021 01:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-496292.pdf

Text

POWER METER SICAM Q100 contains a vulnerability that could allow an attacker to remotely execute code. Siemens has released updates for the affected products and recommends to update to the latest versions.

SSA-463116 V1.0: Multiple Access Control Vulnerabilities in Siveillance Identity before V1.6.284.0

Titel

SSA-463116 V1.0: Multiple Access Control Vulnerabilities in Siveillance Identity before V1.6.284.0

Veröffentlicht

14. Dezember 2021 01:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-463116.pdf

Text

Siveillance Identity contains multiple vulnerabilities that could allow an unauthenticated remote attacker to access or modify several internal application resources. Siemens has released updates for the affected products and recommends to update to the latest versions.

SSA-400332 V1.0: Insufficient Design IP Protection in IEEE 1735 Recommended Practice - Impact to Questa and ModelSim

Titel

SSA-400332 V1.0: Insufficient Design IP Protection in IEEE 1735 Recommended Practice - Impact to Questa and ModelSim

Veröffentlicht

14. Dezember 2021 01:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-400332.pdf

Text

Recent security research identifies weaknesses in the IEEE 1735 recommended practice for encryption of Design IP, which could allow a sophisticated attacker access to unencrypted Design IP data in IEEE 1735-compliant products. This advisory addresses the specific details for the affected Siemens software products: Questa and ModelSim simulators. Siemens is ...

SSA-396621 V1.0: Multiple File Parsing Vulnerabilities in JTTK before V10.8.1.1 and JT Utilities before V12.8.1.1

Titel

SSA-396621 V1.0: Multiple File Parsing Vulnerabilities in JTTK before V10.8.1.1 and JT Utilities before V12.8.1.1

Veröffentlicht

14. Dezember 2021 01:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-396621.pdf

Text

JT Open Toolkit (JTTK) before V10.8.1.1 contains multiple vulnerabilities that could be triggered when it reads a maliciously crafted JT file. These vulnerabilities also affects JT Utilities before V12.8.1.1. If a user is tricked to open a malicious file with any of the affected products, this could lead the application ...

SSA-390195 V1.0: LibVNC Vulnerabilities in SIMATIC ITC Products

Titel

SSA-390195 V1.0: LibVNC Vulnerabilities in SIMATIC ITC Products

Veröffentlicht

14. Dezember 2021 01:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-390195.pdf

Text

Multiple LibVNC vulnerabilities in the affected products listed below could allow remote code execution, information disclosure and Denial-of-Service attacks under certain conditions. Siemens has released updates for the affected products and recommends to update to the latest versions.

13.12.2021

SSA-661247 V1.0: Apache Log4j Vulnerability (CVE-2021-44228, Log4Shell) - Impact to Siemens Products

Titel

SSA-661247 V1.0: Apache Log4j Vulnerability (CVE-2021-44228, Log4Shell) - Impact to Siemens Products

Veröffentlicht

13. Dezember 2021 01:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-661247.pdf

Text

On 2021-12-09, a vulnerability in Apache Log4j (a logging tool used in many Java-based applications) was disclosed, that could allow remote unauthenticated attackers to execute code on vulnerable systems. The vulnerability is tracked as CVE-2021-44228 and is also known as “Log4Shell”. Siemens is currently investigating to determine which products are ...

November 2021

SSA-044112 V1.0: Multiple Vulnerabilities (NUCLEUS:13) in the TCP/IP Stack of Nucleus RTOS

Titel

SSA-044112 V1.0: Multiple Vulnerabilities (NUCLEUS:13) in the TCP/IP Stack of Nucleus RTOS

Veröffentlicht

9. November 2021 01:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-044112.pdf

Text

The TCP/IP stack and related services (FTP, TFTP) of the networking component (Nucleus NET) in Nucleus Real-Time Operating System (RTOS) contain several vulnerabilities, also known as “NUCLEUS:13” and as documented below. Siemens has released updates for several affected products and recommends to update to the latest versions. Siemens recommends countermeasures ...

SSA-324955 V1.6 (Last Update: 2021-11-09): SAD DNS Attack in Linux Based Products

Titel

SSA-324955 V1.6 (Last Update: 2021-11-09): SAD DNS Attack in Linux Based Products

Veröffentlicht

9. November 2021 01:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-324955.pdf

Text

A vulnerability made public under the name SAD DNS affects Domain Name System resolvers due to a vulnerability in the Linux kernel when handling ICMP packets. The Siemens products which are affected are listed below. For more information please see https://www.saddns.net/. Siemens has released updates for several affected products and ...

SSA-772220 V1.3 (Last Update: 2021-11-09): OpenSSL Vulnerabilities in Industrial Products

Titel

SSA-772220 V1.3 (Last Update: 2021-11-09): OpenSSL Vulnerabilities in Industrial Products

Veröffentlicht

9. November 2021 01:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-772220.pdf

Text

OpenSSL has published a security advisory [0] about a vulnerability in OpenSSL versions 1.1.1 < 1.1.1k, that allows an unauthenticated attacker to cause a Denial-of-Service (DoS) if a maliciously crafted renegotiation message is sent. Siemens has released updates for several affected products and recommends to update to the latest versions. ...

SSA-705111 V1.1 (Last Update: 2021-11-09): Multiple Vulnerabilities (NAME:WRECK) in the DNS Module of Nucleus RTOS

Titel

SSA-705111 V1.1 (Last Update: 2021-11-09): Multiple Vulnerabilities (NAME:WRECK) in the DNS Module of Nucleus RTOS

Veröffentlicht

9. November 2021 01:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-705111.pdf

Text

Security researchers discovered and disclosed 9 vulnerabilities in several DNS implementations, also known as “NAME:WRECK” vulnerabilities. The vulnerabilities described in this advisory are from this set. The DNS client of affected products contains multiple vulnerabilities related to the handling of DNS responses and requests. The most severe could allow an ...

SSA-675303 V1.2 (Last Update: 2021-11-09): WIBU Systems CodeMeter Runtime Vulnerabilities in Siemens Products

Titel

SSA-675303 V1.2 (Last Update: 2021-11-09): WIBU Systems CodeMeter Runtime Vulnerabilities in Siemens Products

Veröffentlicht

9. November 2021 01:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-675303.pdf

Text

WIBU Systems published information about two vulnerabilities and an associated fix release version of CodeMeter Runtime, a product provided by WIBU Systems and used in several Siemens products for license management. The vulnerabilities are described in the section “Vulnerability Classification” below and got assigned the CVE IDs CVE-2021-20093 and CVE-2021-20094. ...

SSB-439005 V3.9 (Last Update: 2021-11-09): Vulnerabilities in the additional GNU/Linux subsystem of the SIMATIC S7-1500 CPU 151...

Titel

SSB-439005 V3.9 (Last Update: 2021-11-09): Vulnerabilities in the additional GNU/Linux subsystem of the SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP

Veröffentlicht

9. November 2021 01:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssb-439005.pdf

Text

SSA-362164 V1.1 (Last Update: 2021-11-09): Predictable Initial Sequence Numbers in the TCP/IP Stack of Nucleus RTOS

Titel

SSA-362164 V1.1 (Last Update: 2021-11-09): Predictable Initial Sequence Numbers in the TCP/IP Stack of Nucleus RTOS

Veröffentlicht

9. November 2021 01:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-362164.pdf

Text

The networking component (Nucleus NET) in Nucleus Real-Time Operating System (RTOS) use Initial Sequence Numbers for TCP-Sessions that are predictable. Siemens has released updates for several affected products and recommends to update to the latest versions. Siemens recommends specific countermeasures for products where updates are not available.

SSA-312271 V1.9 (Last Update: 2021-11-09): Unquoted Search Path Vulnerabilities in Windows-based Industrial Software Applications

Titel

SSA-312271 V1.9 (Last Update: 2021-11-09): Unquoted Search Path Vulnerabilities in Windows-based Industrial Software Applications

Veröffentlicht

9. November 2021 01:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-312271.pdf

Text

Several industrial products as listed below contain a local privilege escalation vulnerabilities that could allow authorized local users with administrative privileges to execute custom code with SYSTEM level privileges. Siemens has released updates for the affected products and recommends to update to the latest versions.

SSA-248289 V1.1 (Last Update: 2021-11-09): Denial of Service Vulnerabilities in the IPv6 Stack of Nucleus RTOS

Titel

SSA-248289 V1.1 (Last Update: 2021-11-09): Denial of Service Vulnerabilities in the IPv6 Stack of Nucleus RTOS

Veröffentlicht

9. November 2021 01:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-248289.pdf

Text

The IPv6 stack of the networking component (Nucleus NET) in Nucleus Real-Time Operating System (RTOS) contains two vulnerabilities when processing IPv6 headers which could allow an attacker to cause a denial of service condition. Siemens has released updates for several affected products and recommends to update to the latest versions. ...

SSA-201384 V1.1 (Last Update: 2021-11-09): Predictable UDP Port Number Vulnerability (NAME:WRECK) in the DNS Module of Nucleus ...

Titel

SSA-201384 V1.1 (Last Update: 2021-11-09): Predictable UDP Port Number Vulnerability (NAME:WRECK) in the DNS Module of Nucleus RTOS

Veröffentlicht

9. November 2021 01:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-201384.pdf

Text

Security researchers discovered and disclosed 9 vulnerabilities in several DNS implementations, also known as “NAME:WRECK” vulnerabilities. The vulnerability described in this advisory is from this set. The DNS client of of the networking component (Nucleus NET) in Nucleus Real-Time Operating System (RTOS) contains a vulnerability related to the handling of ...

SSA-185699 V1.1 (Last Update: 2021-11-09): Out of Bounds Write Vulnerabilities (NAME:WRECK) in the DNS Module of Nucleus RTOS

Titel

SSA-185699 V1.1 (Last Update: 2021-11-09): Out of Bounds Write Vulnerabilities (NAME:WRECK) in the DNS Module of Nucleus RTOS

Veröffentlicht

9. November 2021 01:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-185699.pdf

Text

Security researchers discovered and disclosed 9 vulnerabilities in several DNS implementations, also known as “NAME:WRECK” vulnerabilities. The vulnerabilities described in this advisory are from this set. The DNS client of the networking component (Nucleus NET) in Nucleus Real-Time Operating System (RTOS) contains two out of bounds write vulnerabilities in the ...

SSA-917476 V1.0: Multiple Vulnerabilities in SCALANCE W1750D

Titel

SSA-917476 V1.0: Multiple Vulnerabilities in SCALANCE W1750D

Veröffentlicht

9. November 2021 01:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-917476.pdf

Text

The Scalance W1750D device contains multiple vulnerabilities that could allow an attacker to execute code on the affected device(s), read arbitrary files, or create a denial-of-service condition. Siemens has released an update for the SCALANCE W1750D and recommends to update to the latest version. Siemens is preparing further updates and ...

SSA-840188 V1.0: Multiple Vulnerabilities in SIMATIC WinCC Affecting Other SIMATIC Software Products

Titel

SSA-840188 V1.0: Multiple Vulnerabilities in SIMATIC WinCC Affecting Other SIMATIC Software Products

Veröffentlicht

9. November 2021 01:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-840188.pdf

Text

Multiple vulnerabilities were found in SIMATIC WinCC that ultimately could allow local attackers to escalate privileges and read, write or delete critical files. Siemens has released updates for several affected products and recommends to update to the latest versions. Siemens is preparing further updates and recommends specific countermeasures for products ...

SSA-779699 V1.0: Two Incorrect Authorization Vulnerabilities in Mendix

Titel

SSA-779699 V1.0: Two Incorrect Authorization Vulnerabilities in Mendix

Veröffentlicht

9. November 2021 01:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-779699.pdf

Text

Applications built with affected versions of Mendix Studio Pro do not properly control read or write access for certain client actions. This could allow authenticated attackers to manipulate the content of System.FileDocument objects or to retrieve the changedDate attribute of arbitrary objects. Mendix has released updates for the affected product ...

SSA-755517 V1.0: Path Traversal Vulnerability in Siveillance Video DLNA Server

Titel

SSA-755517 V1.0: Path Traversal Vulnerability in Siveillance Video DLNA Server

Veröffentlicht

9. November 2021 01:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-755517.pdf

Text

Siemens has released hotfixes for Siveillance Video DLNA Server, which fix a path traversal vulnerability that could allow an authenticated remote attacker to access sensitive information on the DLNA server. Siemens has released updates for the DLNA server and recommends to apply the update on all installations where DLNA server ...

SSA-740908 V1.0: File Parsing Vulnerabilities in JT Translator in NX

Titel

SSA-740908 V1.0: File Parsing Vulnerabilities in JT Translator in NX

Veröffentlicht

9. November 2021 01:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-740908.pdf

Text

Siemens NX is affected by two vulnerabilities that could be triggered when the application reads JT files. If a user is tricked to open a malicious file with the affected application, this could lead to an access violation, and potentially also to arbitrary code execution on the target host system. ...

SSA-703715 V1.0: Information Disclosure Vulnerability in Climatix POL909 (AWM)

Titel

SSA-703715 V1.0: Information Disclosure Vulnerability in Climatix POL909 (AWM)

Veröffentlicht

9. November 2021 01:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-703715.pdf

Text

Climatix POL909 (AWM module) contains an information disclosure vulnerability could allow an attacker in a man-in-the-middle position to read sensitive data, such as administrator credentials, or modify data in transit. Siemens has released an update for Climatix POL909 (AWM module) and recommends to update to the latest version.

SSA-580693 V1.0: WIBU Systems CodeMeter Runtime Denial-of-Service Vulnerability in Siemens Products

Titel

SSA-580693 V1.0: WIBU Systems CodeMeter Runtime Denial-of-Service Vulnerability in Siemens Products

Veröffentlicht

9. November 2021 01:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-580693.pdf

Text

WIBU Systems published information about a denial-of-service vulnerability and an associated fix release version of CodeMeter Runtime, a product provided by WIBU Systems and used in several Siemens products for license management. The vulnerability is described in the section “Vulnerability Classification” below and got assigned the CVE ID CVE-2021-41057. Successful ...