Bulletins | CERT@VDE

…
45
46
47 (current)
48
49
…

January 2023

SSA-476715 V1.0: Two Vulnerabilities in Automation License Manager

Title

SSA-476715 V1.0: Two Vulnerabilities in Automation License Manager

Published

Jan. 10, 2023, 1 a.m.

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-476715.pdf

Summary

Siemens has released a new version for Automation License Manager that fixes multiple vulnerabilities which, when combined, could allow an attacker to modify and rename license files, extract licenses and overwrite arbitrary files on the target system potentially leading to privilege escalation and remote code execution. Siemens has released an ...

SSA-349422 V1.8 (Last Update: 2023-01-10): Denial of Service Vulnerability in Industrial Real-Time (IRT) Devices

Title

SSA-349422 V1.8 (Last Update: 2023-01-10): Denial of Service Vulnerability in Industrial Real-Time (IRT) Devices

Published

Jan. 10, 2023, 1 a.m.

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-349422.pdf

Summary

A vulnerability in the affected products could allow an unauthorized attacker with network access to perform a denial-of-service attack resulting in loss of real-time synchronization. Siemens has released updates for several affected products and recommends to update to the latest versions. Siemens recommends specific countermeasures for products where updates are ...

Hitachi Energy UNEM

Title

Hitachi Energy UNEM

Published

Jan. 5, 2023, 4:20 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-23-005-01

Summary

Hitachi Energy FOXMAN-UN

Title

Hitachi Energy FOXMAN-UN

Published

Jan. 5, 2023, 4:05 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-23-005-02

Summary

Hitachi Energy Lumada Asset Performance Management

Title

Hitachi Energy Lumada Asset Performance Management

Published

Jan. 5, 2023, 4 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-23-005-03

Summary

December 2022

Priva TopControl Suite

Title

Priva TopControl Suite

Published

Dec. 22, 2022, 4:40 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-356-01

Summary

Rockwell Automation Studio 5000 Logix Emulate

Title

Rockwell Automation Studio 5000 Logix Emulate

Published

Dec. 22, 2022, 4:30 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-356-02

Summary

Mitsubishi Electric MELSEC iQ-R, iQ-L Series and MELIPC Series

Title

Mitsubishi Electric MELSEC iQ-R, iQ-L Series and MELIPC Series

Published

Dec. 22, 2022, 4:20 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-356-03

Summary

SSA-223771 V1.1 (Last Update: 2022-12-21): SISCO Stack Vulnerability in SIPROTEC 5 Devices

Title

SSA-223771 V1.1 (Last Update: 2022-12-21): SISCO Stack Vulnerability in SIPROTEC 5 Devices

Published

Dec. 21, 2022, 1 a.m.

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-223771.pdf

Summary

A vulnerability in the third party component SISCO MMS-EASE could allow attackers to cause a denial of service condition with SIPROTEC 5 devices. Siemens has released updates for the affected products and recommends to update to the latest versions.

Fuji Electric Tellus Lite V-Simulator

Title

Fuji Electric Tellus Lite V-Simulator

Published

Dec. 20, 2022, 4:25 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-354-01

Summary

Rockwell Automation GuardLogix and ControlLogix controllers

Title

Rockwell Automation GuardLogix and ControlLogix controllers

Published

Dec. 20, 2022, 4:20 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-354-02

Summary

Rockwell Automation MicroLogix 1100 and 1400

Title

Rockwell Automation MicroLogix 1100 and 1400

Published

Dec. 20, 2022, 4:10 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-354-04

Summary

Delta 4G Router DX-3021

Title

Delta 4G Router DX-3021

Published

Dec. 20, 2022, 4:05 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-354-05

Summary

Prosys OPC UA Simulation Server (Update A)

Title

Prosys OPC UA Simulation Server (Update A)

Published

Dec. 20, 2022, 4 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-349-01

Summary

Prosys OPC UA Simulation Server

Title

Prosys OPC UA Simulation Server

Published

Dec. 15, 2022, 7:20 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-349-01

Summary

Siemens SCALANCE X-200RNA Switch Devices

Title

Siemens SCALANCE X-200RNA Switch Devices

Published

Dec. 15, 2022, 7:15 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-349-02

Summary

Siemens Multiple Denial of Service Vulnerabilities in Industrial Products

Title

Siemens Multiple Denial of Service Vulnerabilities in Industrial Products

Published

Dec. 15, 2022, 7:10 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-349-03

Summary

Siemens Multiple Vulnerabilities in SCALANCE Products

Title

Siemens Multiple Vulnerabilities in SCALANCE Products

Published

Dec. 15, 2022, 7:05 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-349-04

Summary

Siemens PLM Help Server

Title

Siemens PLM Help Server

Published

Dec. 15, 2022, 7 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-346-05

Summary

Siemens SIMATIC WinCC OA Ultralight Client

Title

Siemens SIMATIC WinCC OA Ultralight Client

Published

Dec. 15, 2022, 6:55 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-349-06

Summary

Siemens Products affected by OpenSSL 3.0

Title

Siemens Products affected by OpenSSL 3.0

Published

Dec. 15, 2022, 6:40 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-349-09

Summary

This advisory contains mitigations for a Classic Buffer Overflow vulnerabilities in Siemens Calibre ICE, Mcenter, SCALANCE X-200RNA switch family, SICAM GridPass, and SIMATIC RTLS Locating Manager products.

Siemens APOGEE/TALON Field Panels

Title

Siemens APOGEE/TALON Field Panels

Published

Dec. 15, 2022, 6:35 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-349-10

Summary

This advisory contains mitigations for a Predictable Exact Value From Previous Values vulnerability in Simens APOGEE PXC/TALON TC software.

ICONICS and Mitsubishi Electric Products

Title

ICONICS and Mitsubishi Electric Products

Published

Dec. 13, 2022, 4:10 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-347-01

Summary

Schneider Electric APC Easy UPS Online

Title

Schneider Electric APC Easy UPS Online

Published

Dec. 13, 2022, 4:05 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-347-02

Summary

Contec CONPROSSYS HMI System (CHS)

Title

Contec CONPROSSYS HMI System (CHS)

Published

Dec. 13, 2022, 4 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-347-03

Summary

…
45
46
47 (current)
48
49
…

Last Updates

BOSCH PSIRT

21.08.2024

SIEMENS CERT

12.09.2024

US CERT

19.09.2024

US CERT (ICS)

19.09.2024

By Source

BOSCH PSIRT (81)
SIEMENS CERT (1785)
US CERT (167)
US CERT (ICS) (1622)

Archive

2024

September (56)
August (58)
July (63)
June (53)
May (64)
April (41)
March (45)
February (45)
January (41)

2023

December (57)
November (58)
October (46)
September (51)
August (62)
July (49)
June (49)
May (52)
April (67)
March (67)
February (71)
January (60)

2022

December (65)
November (46)
October (61)
September (55)
August (88)
July (61)
June (91)
May (58)
April (83)
March (72)
February (70)
January (37)

2021

December (73)
November (46)
October (49)
September (73)
August (33)
July (33)
June (30)
May (30)
April (37)
March (46)
February (42)
January (27)

2020

December (32)
November (19)
October (30)
September (33)
August (26)
July (51)
June (51)
May (26)
April (39)
March (45)
February (106)
January (35)

2019

December (33)
November (14)
October (37)
September (34)
August (26)
July (28)
June (22)
May (37)
April (28)
March (19)
February (36)
January (37)

2018

December (36)
November (36)
October (34)
September (22)
August (26)
July (18)
June (26)
May (42)
April (31)
March (37)
February (24)
January (10)

2017

December (1)
August (1)
July (2)
June (1)
May (1)
April (1)
March (1)

Feeds

RSS / Atom