Bulletins | CERT@VDE

SSA-160202 V1.0: Multiple Access Control Vulnerabilities in SiPass Integrated

Title

SSA-160202 V1.0: Multiple Access Control Vulnerabilities in SiPass Integrated

Published

Dec. 14, 2021, 1 a.m.

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-160202.pdf

Summary

SiPass integrated contains multiple vulnerabilities that could allow an unauthenticated remote attacker to access or modify several internal application resources. Siemens has released a tool, “SiPass integrated Component Manager”, to remediate the vulnerabilities on all maintained and supported versions of SiPass integrated and recommends to apply this tool.

SSA-161331 V1.0: Scene File Parsing Vulnerability in Simcenter STAR-CCM+ Viewer before V2021.3.1

Title

SSA-161331 V1.0: Scene File Parsing Vulnerability in Simcenter STAR-CCM+ Viewer before V2021.3.1

Published

Dec. 14, 2021, 1 a.m.

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-161331.pdf

Summary

Siemens Simcenter STAR-CCM+ Viewer is affected by a vulnerability that could be triggered when the application reads scene (.sce) files. If a user is tricked to open a malicious file with the affected application, this could lead to a crash, and potentially also to arbitrary code execution or data extraction ...

SSA-772220 V1.4 (Last Update: 2021-12-14): OpenSSL Vulnerabilities in Industrial Products

Title

SSA-772220 V1.4 (Last Update: 2021-12-14): OpenSSL Vulnerabilities in Industrial Products

Published

Dec. 14, 2021, 1 a.m.

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-772220.pdf

Summary

OpenSSL has published a security advisory [0] about a vulnerability in OpenSSL versions 1.1.1 < 1.1.1k, that allows an unauthenticated attacker to cause a Denial-of-Service (DoS) if a maliciously crafted renegotiation message is sent. Siemens has released updates for several affected products and recommends to update to the latest versions. ...

SSA-629512 V1.3 (Last Update: 2021-12-14): Local Privilege Escalation Vulnerability in TIA Portal

Title

SSA-629512 V1.3 (Last Update: 2021-12-14): Local Privilege Escalation Vulnerability in TIA Portal

Published

Dec. 14, 2021, 1 a.m.

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-629512.pdf

Summary

The latest updates for TIA Portal fix a vulnerability that could allow a local attacker to execute arbitrary code with SYSTEM privileges. Update: The previously provided fixes only correctly set the permissions on English Windows versions. Siemens is preparing updates and recommends specific countermeasures for products where updates are not, ...

SSA-580693 V1.1 (Last Update: 2021-12-14): WIBU Systems CodeMeter Runtime Denial-of-Service Vulnerability in Siemens Products

Title

SSA-580693 V1.1 (Last Update: 2021-12-14): WIBU Systems CodeMeter Runtime Denial-of-Service Vulnerability in Siemens Products

Published

Dec. 14, 2021, 1 a.m.

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-580693.pdf

Summary

WIBU Systems published information about a denial-of-service vulnerability and an associated fix release version of CodeMeter Runtime, a product provided by WIBU Systems and used in several Siemens products for license management. The vulnerability is described in the section “Vulnerability Classification” below and got assigned the CVE ID CVE-2021-41057. Successful ...

SSA-549234 V1.1 (Last Update: 2021-12-14): Denial-of-Service Vulnerability in SIMATIC NET CP Modules

Title

SSA-549234 V1.1 (Last Update: 2021-12-14): Denial-of-Service Vulnerability in SIMATIC NET CP Modules

Published

Dec. 14, 2021, 1 a.m.

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-549234.pdf

Summary

A denial of service vulnerability was identified in different types of Communication Processors. An attacker could exploit this vulnerability causing the device to become un-operational until the device is restarted. Siemens is preparing updates and recommends specific countermeasures for products where updates are not, or not yet available.

SSA-324955 V1.7 (Last Update: 2021-12-14): SAD DNS Attack in Linux Based Products

Title

SSA-324955 V1.7 (Last Update: 2021-12-14): SAD DNS Attack in Linux Based Products

Published

Dec. 14, 2021, 1 a.m.

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-324955.pdf

Summary

A vulnerability made public under the name SAD DNS affects Domain Name System resolvers due to a vulnerability in the Linux kernel when handling ICMP packets. The Siemens products which are affected are listed below. For more information please see https://www.saddns.net/. Siemens has released updates for several affected products and ...

SSA-114589 V1.1 (Last Update: 2021-12-14): Multiple Vulnerabilities in Nucleus RTOS based APOGEE, TALON and Desigo PXC/PXM Prod...

Title

SSA-114589 V1.1 (Last Update: 2021-12-14): Multiple Vulnerabilities in Nucleus RTOS based APOGEE, TALON and Desigo PXC/PXM Products

Published

Dec. 14, 2021, 1 a.m.

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-114589.pdf

Summary

Multiple vulnerabilities (also known as “NUCLEUS:13”) have be identified in the Nucleus RTOS (real-time operating system) and reported in the Siemens Security Advisory SSA-044112: https://cert-portal.siemens.com/productcert/pdf/ssa-044112.pdf. The products listed below use affected versions of the Nucleus software and inherently contain these vulnerabilities. Siemens is preparing updates and recommends specific countermeasures for ...

13.12.2021

SSA-661247 V1.0: Apache Log4j Vulnerability (CVE-2021-44228, Log4Shell) - Impact to Siemens Products

Title

SSA-661247 V1.0: Apache Log4j Vulnerability (CVE-2021-44228, Log4Shell) - Impact to Siemens Products

Published

Dec. 13, 2021, 1 a.m.

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-661247.pdf

Summary

On 2021-12-09, a vulnerability in Apache Log4j (a logging tool used in many Java-based applications) was disclosed, that could allow remote unauthenticated attackers to execute code on vulnerable systems. The vulnerability is tracked as CVE-2021-44228 and is also known as “Log4Shell”. Siemens is currently investigating to determine which products are ...

09.12.2021

Hillrom Welch Allyn Cardio Products

Title

Hillrom Welch Allyn Cardio Products

Published

Dec. 9, 2021, 4:10 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsma-21-343-01

Summary

This advisory contains mitigations for an Authentication Bypass Using an Alternate Path or Channel vulnerability in Hillrom Welch Allyn cardiology devices.

09.12.2021

Hitachi Energy GMS600, PWC600, and Relion

Title

Hitachi Energy GMS600, PWC600, and Relion

Published

Dec. 9, 2021, 4:05 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-21-343-01

Summary

This advisory contains mitigations for an Improper Access Controls vulnerability in Hitachi Energy GMS600, PWC600, and Relion circuit breaker monitoring systems.

08.12.2021

BOSCH PSIRT

Multiple Vulnerabilities in Bosch BT software products

Title

Multiple Vulnerabilities in Bosch BT software products

Published

Dec. 8, 2021, 1 a.m.

URL

https://psirt.bosch.com/security-advisories/bosch-sa-043434-bt.html

Summary

BOSCH-SA-043434-BT: A recently discovered security vulnerability allows an unauthenticated attacker to cause an application to crash (Denial of Service / DoS) and for the VRM opens the possibility to send unauthenticated commands for a short time (this vulnerability is rated critical).The VRM, DIVAR IP and BVMS with VRM are also ...

07.12.2021

Hitachi Energy RTU500 OpenLDAP

Title

Hitachi Energy RTU500 OpenLDAP

Published

Dec. 7, 2021, 4:10 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-21-341-01

Summary

This advisory contains mitigations for Type Confusion, and Reachable Assertion vulnerabilities in Hitachi Energy RTU500 OpenLDAP firmware.

07.12.2021

Hitachi Energy XMC20 and FOX61x

Title

Hitachi Energy XMC20 and FOX61x

Published

Dec. 7, 2021, 4:05 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-21-341-02

Summary

This advisory contains mitigations for Weak Password Requirements, and Missing Handler vulnerabilities in Hitachi Energy XMC20 and FOX61x multi-service network elements.

07.12.2021

FANUC Robot Controllers

Title

FANUC Robot Controllers

Published

Dec. 7, 2021, 4 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-21-243-02

Summary

This advisory is a follow-up to the original advisory titled ICSA-21-243-02P FANUC Robot Controllers that was posted to the HSIN ICS library on August 31, 2021. This advisory contains mitigations for Integer Coercion Error, and Out-of-bounds Write vulnerabilities in FANUC Robot Controllers.

AA21-336A: APT Actors Exploiting CVE-2021-44077 in Zoho ManageEngine ServiceDesk Plus

US CERT

Title

AA21-336A: APT Actors Exploiting CVE-2021-44077 in Zoho ManageEngine ServiceDesk Plus

Published

Dec. 2, 2021, 7 p.m.

URL

https://us-cert.cisa.gov/ncas/alerts/aa21-336a

Summary

Original release date: December 2, 2021 | Last revised: December 6, 2021SummaryThis joint Cybersecurity Advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework, Version 9. See the ATT&CK for Enterprise framework for referenced threat actor techniques and for mitigations. This joint advisory is the result of analytic ...

Schneider Electric SESU

Title

Schneider Electric SESU

Published

Dec. 2, 2021, 4:35 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-21-336-01

Summary

This advisory contains mitigations for an Insufficient Entropy vulnerability in the Schneider Electric Software Update.

Johnson Controls Entrapass

Title

Johnson Controls Entrapass

Published

Dec. 2, 2021, 4:30 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-21-336-02

Summary

This advisory contains mitigations for a Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Johnson Controls Entrapass security management software.

Distributed Data Systems WebHMI

Title

Distributed Data Systems WebHMI

Published

Dec. 2, 2021, 4:25 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-21-336-03

Summary

This advisory contains mitigations for Authentication Bypass by Primary Weakness, and Unrestricted Upload of File with Dangerous Type vulnerabilities in Distributed Data Systems WebHMI SCADA systems.

Hitachi Energy RTU500 series BCI

Title

Hitachi Energy RTU500 series BCI

Published

Dec. 2, 2021, 4:20 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-21-336-04

Summary

This advisory contains mitigations for an Improper Input Validation vulnerability in Hitachi Energy RTU500 series BCI remote terminal units.

Hitachi Energy Relion 670/650/SAM600-IO

Title

Hitachi Energy Relion 670/650/SAM600-IO

Published

Dec. 2, 2021, 4:15 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-21-336-05

Summary

This advisory contains mitigations for an Insecure Default Initialization of Resource vulnerability in Hitachi Energy Relion 670/650/SAM600-IO Intelligent Electronic Devices (IEDs).

Hitachi Energy APM Edge

Title

Hitachi Energy APM Edge

Published

Dec. 2, 2021, 4:10 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-21-336-06

Summary

This advisory contains mitigations for a Using Components with Known Vulnerabilities vulnerability in Hitachi Energy Transformer Asset Performance Management (APM) Edge software.

Hitachi Energy PCM600 Update Manager

Title

Hitachi Energy PCM600 Update Manager

Published

Dec. 2, 2021, 4:05 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-21-336-07

Summary

This advisory contains mitigations for a Improper Certificate Validation vulnerability in Hitachi Energy PCM600 Update Manager protection and control IED software.

Hitachi Energy RTU500 series

Title

Hitachi Energy RTU500 series

Published

Dec. 2, 2021, 4 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-21-336-08

Summary

This advisory contains mitigations for Observable Discrepancy, Buffer Over-read, and Out-of-bounds Read vulnerabilities in Hitachi Energy RTU500 remote terminal units.

November 2021

30.11.2021