March 2023
16.03.2023
US CERT (ICS)
Siemens SCALANCE W1750D Devices
Title
Siemens SCALANCE W1750D Devices
Published
March 16, 2023, 1 p.m.
URL
https://www.cisa.gov/news-events/ics-advisories/icsa-23-075-04
Summary
As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories (CERT Services | Services | Siemens Global). 1. EXECUTIVE SUMMARY CVSS v3 ...
16.03.2023
US CERT (ICS)
Siemens RUGGEDCOM CROSSBOW V5.3
Title
Siemens RUGGEDCOM CROSSBOW V5.3
Published
March 16, 2023, 1 p.m.
URL
https://www.cisa.gov/news-events/ics-advisories/icsa-23-075-02
Summary
As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories (CERT Services | Services | Siemens Global). 1. EXECUTIVE SUMMARY CVSS v3 ...
16.03.2023
US CERT (ICS)
Siemens RUGGEDCOM CROSSBOW V5.2
Title
Siemens RUGGEDCOM CROSSBOW V5.2
Published
March 16, 2023, 1 p.m.
URL
https://www.cisa.gov/news-events/ics-advisories/icsa-23-075-03
Summary
As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories (CERT Services | Services | Siemens Global). 1. EXECUTIVE SUMMARY CVSS v3 ...
15.03.2023
US CERT
#StopRansomware: LockBit 3.0
Title
#StopRansomware: LockBit 3.0
Published
March 15, 2023, 8:20 p.m.
URL
https://www.cisa.gov/news-events/cybersecurity-advisories/aa23-075a
Summary
SUMMARY Note: this joint Cybersecurity Advisory (CSA) is part of an ongoing #StopRansomware effort to publish advisories for network defenders that detail ransomware variants and ransomware threat actors. These #StopRansomware advisories include recently and historically observed tactics, techniques, and procedures (TTPs) and indicators of compromise (IOCs) to help organizations protect ...
14.03.2023
US CERT (ICS)
AVEVA Plant SCADA and AVEVA Telemetry Server
Title
<a href="/news-events/ics-advisories/icsa-23-073-04" hreflang="en">AVEVA Plant SCADA and AVEVA Telemetry Server</a>
Published
March 14, 2023, 1 p.m.
URL
https://www.cisa.gov/news-events/ics-advisories/icsa-23-073-04
Summary
1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: AVEVA Equipment: AVEVA Plant SCADA and AVEVA Telemetry Server Vulnerability: Improper Authorization 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an unauthenticated user to read data, cause a denial of service, and tamper with alarm states. ...
14.03.2023
US CERT (ICS)
GE iFIX
Title
<a href="/news-events/ics-advisories/icsa-23-073-03" hreflang="en">GE iFIX</a>
Published
March 14, 2023, 1 p.m.
URL
https://www.cisa.gov/news-events/ics-advisories/icsa-23-073-03
Summary
1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low attack complexity Vendor: GE Digital Equipment: iFIX Vulnerability: Code Injection 2. RISK EVALUATION Successful exploitation of this vulnerability could allow for privilege escalation and full control of the system. 3. TECHNICAL DETAILS 3.1 AFFECTED PRODUCTS The following components of iFIX, a human ...
14.03.2023
US CERT (ICS)
Omron CJ1M PLC
Title
<a href="/news-events/ics-advisories/icsa-23-073-01" hreflang="en">Omron CJ1M PLC</a>
Published
March 14, 2023, 1 p.m.
URL
https://www.cisa.gov/news-events/ics-advisories/icsa-23-073-01
Summary
1. EXECUTIVE SUMMARY CVSS v3 9.1 ATTENTION: Exploitable remotely/low attack complexity Vendor: Omron Equipment: CJ1M PLC Vulnerabilities: Improper Access Control 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to bypass user memory protections by writing to a specific memory address. An attacker can also overwrite passwords ...
14.03.2023
US CERT (ICS)
AVEVA Plant SCADA and AVEVA Telemetry Server
Title
AVEVA Plant SCADA and AVEVA Telemetry Server
Published
March 14, 2023, 1 p.m.
URL
https://www.cisa.gov/news-events/ics-advisories/icsa-23-073-04
Summary
1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: AVEVA Equipment: AVEVA Plant SCADA and AVEVA Telemetry Server Vulnerability: Improper Authorization 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an unauthenticated user to read data, cause a denial of service, and tamper with alarm states. ...
14.03.2023
US CERT (ICS)
Autodesk FBX SDK
Title
Autodesk FBX SDK
Published
March 14, 2023, 1 p.m.
URL
https://www.cisa.gov/news-events/ics-advisories/icsa-23-073-02
Summary
1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Autodesk Equipment: FBX SDK Vulnerability: Out-of-bounds Read, Use After Free, Out-of-bounds Write 2. RISK EVALUATION Successful exploitation of these vulnerabilities could lead to code execution or a denial-of-service condition. Products using Autodesk FBX SDK software are affected by ...
14.03.2023
US CERT (ICS)
Omron CJ1M PLC
Title
Omron CJ1M PLC
Published
March 14, 2023, 1 p.m.
URL
https://www.cisa.gov/news-events/ics-advisories/icsa-23-073-01
Summary
1. EXECUTIVE SUMMARY CVSS v3 9.1 ATTENTION: Exploitable remotely/low attack complexity Vendor: Omron Equipment: CJ1M PLC Vulnerabilities: Improper Access Control 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to bypass user memory protections by writing to a specific memory address. An attacker can also overwrite passwords ...
14.03.2023
US CERT (ICS)
Autodesk FBX SDK
Title
<a href="/news-events/ics-advisories/icsa-23-073-02" hreflang="en">Autodesk FBX SDK</a>
Published
March 14, 2023, 1 p.m.
URL
https://www.cisa.gov/news-events/ics-advisories/icsa-23-073-02
Summary
1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Autodesk Equipment: FBX SDK Vulnerability: Out-of-bounds Read, Use After Free, Out-of-bounds Write 2. RISK EVALUATION Successful exploitation of these vulnerabilities could lead to code execution or a denial-of-service condition. Products using Autodesk FBX SDK software are affected by ...
14.03.2023
SIEMENS CERT
SSA-847261 V1.1 (Last Update: 2023-03-14): Multiple SPP File Parsing Vulnerabilities in Tecnomatix Plant Simulation
Title
SSA-847261 V1.1 (Last Update: 2023-03-14): Multiple SPP File Parsing Vulnerabilities in Tecnomatix Plant Simulation
Published
March 14, 2023, 1 a.m.
URL
https://cert-portal.siemens.com/productcert/html/ssa-847261.html
Summary
Siemens Tecnomatix Plant Simulation has released an update, 2201 Update 6, that fixes multiple vulnerabilities that could be triggered when the application reads SPP files. If a user is tricked to open a malicious file using the affected application, this could lead to a crash, and potentially also to arbitrary ...
14.03.2023
SIEMENS CERT
SSA-851884 V1.0: Authentication Bypass Vulnerability in Mendix SAML Module
Title
SSA-851884 V1.0: Authentication Bypass Vulnerability in Mendix SAML Module
Published
March 14, 2023, 1 a.m.
URL
https://cert-portal.siemens.com/productcert/html/ssa-851884.html
Summary
The Mendix SAML module insufficiently verifies the SAML assertions. This could allow unauthenticated remote attackers to bypass authentication and get access to the application. Mendix has provided fix releases for the Mendix SAML module and recommends to update to the latest version.
14.03.2023
SIEMENS CERT
SSA-772220 V2.2 (Last Update: 2023-03-14): OpenSSL Vulnerabilities in Industrial Products
Title
SSA-772220 V2.2 (Last Update: 2023-03-14): OpenSSL Vulnerabilities in Industrial Products
Published
March 14, 2023, 1 a.m.
URL
https://cert-portal.siemens.com/productcert/html/ssa-772220.html
Summary
OpenSSL has published a security advisory [0] about a vulnerability in OpenSSL versions 1.1.1 < 1.1.1k, that allows an unauthenticated attacker to cause a Denial-of-Service (DoS) if a maliciously crafted renegotiation message is sent. Siemens has released updates for several affected products and recommends to update to the latest versions. ...
14.03.2023
SIEMENS CERT
SSA-840800 V1.2 (Last Update: 2023-03-14): Code Injection Vulnerability in RUGGEDCOM ROS
Title
SSA-840800 V1.2 (Last Update: 2023-03-14): Code Injection Vulnerability in RUGGEDCOM ROS
Published
March 14, 2023, 1 a.m.
URL
https://cert-portal.siemens.com/productcert/html/ssa-840800.html
Summary
RUGGEDCOM ROS-based devices are vulnerable to a web-based code injection attack. To execute this attack, it is necessary to access the system via the Command Line Interface (CLI). Siemens has released updates for several affected products and recommends to update to the latest versions. Siemens recommends specific countermeasures for products ...
14.03.2023
SIEMENS CERT
SSA-552702 V1.4 (Last Update: 2023-03-14): Privilege Escalation Vulnerability in the Web Interface of SCALANCE and RUGGEDCOM Pr...
Title
SSA-552702 V1.4 (Last Update: 2023-03-14): Privilege Escalation Vulnerability in the Web Interface of SCALANCE and RUGGEDCOM Products
Published
March 14, 2023, 1 a.m.
URL
https://cert-portal.siemens.com/productcert/html/ssa-552702.html
Summary
The products listed below do not properly authorize the change password function of the web interface. This could allow low privileged users to escalate their privileges. Siemens has released updates for several affected products and recommends to update to the latest versions. Siemens is preparing further updates and recommends specific ...
14.03.2023
SIEMENS CERT
SSA-517377 V1.2 (Last Update: 2023-03-14): Multiple Vulnerabilities in the SRCS VPN Feature in SIMATIC CP Devices
Title
SSA-517377 V1.2 (Last Update: 2023-03-14): Multiple Vulnerabilities in the SRCS VPN Feature in SIMATIC CP Devices
Published
March 14, 2023, 1 a.m.
URL
https://cert-portal.siemens.com/productcert/html/ssa-517377.html
Summary
The below referenced devices contain multiple vulnerabilities that could be exploited when the SINEMA Remote Connect Server (SRCS) VPN feature is used. The feature is not activated by default. The most severe could allow an attacker to execute arbitrary code with elevated privileges under certain circumstances. Siemens has released updates ...
14.03.2023
SIEMENS CERT
SSA-941426 V1.4 (Last Update: 2023-03-14): Multiple LLDP Vulnerabilities in Industrial Products
Title
SSA-941426 V1.4 (Last Update: 2023-03-14): Multiple LLDP Vulnerabilities in Industrial Products
Published
March 14, 2023, 1 a.m.
URL
https://cert-portal.siemens.com/productcert/html/ssa-941426.html
Summary
There are multiple vulnerabilities in an underlying Link Layer Discovery Protocol (LLDP) third party library. Siemens has released updates for the affected products and recommends to update to the latest versions.
14.03.2023
SIEMENS CERT
SSA-764417 V1.7 (Last Update: 2023-03-14): Weak Encryption Vulnerability in RUGGEDCOM ROS Devices
Title
SSA-764417 V1.7 (Last Update: 2023-03-14): Weak Encryption Vulnerability in RUGGEDCOM ROS Devices
Published
March 14, 2023, 1 a.m.
URL
https://cert-portal.siemens.com/productcert/html/ssa-764417.html
Summary
The SSH server on RUGGEDCOM ROS devices is configured to offer weak ciphers by default. This could allow an unauthorized attacker in a man-in-the-middle position to read and modify any data passed over the connection between legitimate clients and the affected device. Siemens has released updates for the affected products ...
14.03.2023
SIEMENS CERT
SSA-787941 V1.1 (Last Update: 2023-03-14): Denial of Service Vulnerability in RUGGEDCOM ROS V4
Title
SSA-787941 V1.1 (Last Update: 2023-03-14): Denial of Service Vulnerability in RUGGEDCOM ROS V4
Published
March 14, 2023, 1 a.m.
URL
https://cert-portal.siemens.com/productcert/html/ssa-787941.html
Summary
RUGGEDCOM ROS-based V4 devices are vulnerable to a denial of service attack (Slowloris). By sending partial HTTP requests nonstop, with none completed, the affected web servers will be waiting for the completion of each request, occupying all available HTTP connections. The web server recovers by itself once the attack ends. ...
14.03.2023
SIEMENS CERT
SSA-244969 V1.9 (Last Update: 2023-03-14): OpenSSL Vulnerability in Industrial Products
Title
SSA-244969 V1.9 (Last Update: 2023-03-14): OpenSSL Vulnerability in Industrial Products
Published
March 14, 2023, 1 a.m.
URL
https://cert-portal.siemens.com/productcert/html/ssa-244969.html
Summary
OpenSSL has published a security advisory [0] about a vulnerability in OpenSSL versions 1.1.1 < 1.1.1l and 1.0.2 < 1.0.2za that allows an attacker to cause a denial of service (DoS) or to disclose private memory content. Siemens has released updates for several affected products and recommends to update to ...
14.03.2023
SIEMENS CERT
SSA-476715 V1.1 (Last Update: 2023-03-14): Two Vulnerabilities in Automation License Manager
Title
SSA-476715 V1.1 (Last Update: 2023-03-14): Two Vulnerabilities in Automation License Manager
Published
March 14, 2023, 1 a.m.
URL
https://cert-portal.siemens.com/productcert/html/ssa-476715.html
Summary
Siemens Automation License Manager contains two vulnerabilities which, when combined, could allow an attacker to modify and rename license files, extract licenses and overwrite arbitrary files on the target system potentially leading to privilege escalation and remote code execution. The affected functionality is not available for remote attackers in the ...
14.03.2023
SIEMENS CERT
SSA-482757 V1.2 (Last Update: 2023-03-14): Missing Immutable Root of Trust in S7-1500 CPU devices
Title
SSA-482757 V1.2 (Last Update: 2023-03-14): Missing Immutable Root of Trust in S7-1500 CPU devices
Published
March 14, 2023, 1 a.m.
URL
https://cert-portal.siemens.com/productcert/html/ssa-482757.html
Summary
Affected models of the S7-1500 CPU product family do not contain an Immutable Root of Trust in Hardware. With this the integrity of the code executed on the device can not be validated during load-time. An attacker with physical access to the device could use this to replace the boot ...
14.03.2023
SIEMENS CERT
SSA-320629 V1.0: Security Vulnerabilities Fixed in RUGGEDCOM CROSSBOW V5.3
Title
SSA-320629 V1.0: Security Vulnerabilities Fixed in RUGGEDCOM CROSSBOW V5.3
Published
March 14, 2023, 1 a.m.
URL
https://cert-portal.siemens.com/productcert/html/ssa-320629.html
Summary
RUGGEDCOM CROSSBOW before V5.3 contains two vulnerabilities that could allow authenticated remote attackers to access data they are not authorized for, or execute arbitrary database queries via an SQL injection attack. Siemens has released an update for RUGGEDCOM CROSSBOW and recommends to update to the latest version.
14.03.2023
SIEMENS CERT
SSA-726834 V1.0: Denial of Service Vulnerability in the RADIUS Client of SIPROTEC 5 Devices
Title
SSA-726834 V1.0: Denial of Service Vulnerability in the RADIUS Client of SIPROTEC 5 Devices
Published
March 14, 2023, 1 a.m.
URL
https://cert-portal.siemens.com/productcert/html/ssa-726834.html
Summary
The RADIUS client implementation of the VxWorks platform in SIPROTEC 5 devices contains a denial of service vulnerability that could be triggered when a specially crafted packet is sent by a RADIUS server. Siemens has released updates for the affected products and recommends to update to the latest versions.

Last Updates

BOSCH PSIRT
31.10.2024
SIEMENS CERT
22.11.2024
US CERT
08.11.2024
US CERT (ICS)
21.11.2024

By Source

Archive

2024
2023
2022
2021
2020
2019
2018
2017

Feeds