Bulletins | CERT@VDE

SSA-949188 V1.0: File Parsing Vulnerabilities in Simcenter Femap before V2022.1.1

Title

SSA-949188 V1.0: File Parsing Vulnerabilities in Simcenter Femap before V2022.1.1

Published

Feb. 17, 2022, 1 a.m.

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-949188.pdf

Summary

Siemens Simcenter Femap versions before V2022.1.1 are affected by vulnerabilities that could be triggered when the application reads files in .NEU or .BDF format. If a user is tricked to open a malicious file with the affected application, an attacker could leverage the vulnerability to leak information or potentially perform ...

16.02.2022

US CERT

AA22-047A: Russian State-Sponsored Cyber Actors Target Cleared Defense Contractor Networks to Obtain Sensitive U.S. Defense Inf...

Title

AA22-047A: Russian State-Sponsored Cyber Actors Target Cleared Defense Contractor Networks to Obtain Sensitive U.S. Defense Information and Technology

Published

Feb. 16, 2022, 4 p.m.

URL

https://us-cert.cisa.gov/ncas/alerts/aa22-047a

Summary

Original release date: February 16, 2022SummaryActions to Help Protect Against Russian State-Sponsored Malicious Cyber Activity: • Enforce multifactor authentication. • Enforce strong, unique passwords. • Enable M365 Unified Audit Logs. • Implement endpoint detection and response tools. From at least January 2020, through February 2022, the Federal Bureau of Investigation ...

11.02.2022

Siemens Solid Edge, JT2Go, and Teamcenter Visualization

Title

Siemens Solid Edge, JT2Go, and Teamcenter Visualization

Published

Feb. 11, 2022, 4:55 a.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-041-07-1

Summary

This advisory contains mitigations for Improper Restriction of Operations within the Bounds of a Memory Buffer, Out-of-bounds Write, Heap-based Buffer Overflow, and Out-of-bounds Read vulnerabilities in Siemens Solid Edge, JT2Go, and Teamcenter Visualization software products.

Siemens SIMATIC Industrial Products

Title

Siemens SIMATIC Industrial Products

Published

Feb. 10, 2022, 5:25 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-041-01

Summary

This advisory contains mitigations for Operation on a Resource after Expiration or Release, and Missing Release of Memory after Effective Lifetime vulnerabilities in Siemens Industrial Products using the SIMATIC firmware platform.

Siemens SIMATIC WinCC and PCS

Title

Siemens SIMATIC WinCC and PCS

Published

Feb. 10, 2022, 5:20 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-041-02

Summary

This advisory contains mitigations for a Exposure of Sensitive Information to an Unauthorized Actor, Insertion of Sensitive Information into Externally-Accessible File or Directory vulnerability in Siemens SIMATIC WinCC and PCS industrial automation products.

SINEMA Remote Connect Server

Title

SINEMA Remote Connect Server

Published

Feb. 10, 2022, 5:10 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-041-04

Summary

This advisory contains mitigations for an Open Redirect vulnerability in the SINEMA Remote Connect Server, a management platform for remote networks.

https://us-cert.cisa.gov/ics/advisories/icsa-22-041-05

SICAM TOOLBOX II

Title

SICAM TOOLBOX II

Published

Feb. 10, 2022, 5:05 p.m.

URL

Summary

This advisory contains mitigations for a Use of Hard-coded Credentials vulnerability in the Siemens SICAM TOOLBOX II software platform.

Siemens Spectrum Power 4

Title

Siemens Spectrum Power 4

Published

Feb. 10, 2022, 5 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-041-06

Summary

This advisory contains mitigations for a Cross-site scripting vulnerability in Siemens Spectrum Power 4 communications and data modeling software.

Siemens COMOS Web (Update A)

Title

Siemens COMOS Web (Update A)

Published

Feb. 10, 2022, 4:50 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-013-05

Summary

This updated advisory is a follow-up to the original advisory titled ICSA-22-013-05 Siemens COMOS Web that was published January 13, 2022, to the ICS webpage on www.cisa.gov/uscert. This advisory contains mitigations for Basic XSS, Relative Path Traversal, SQL Injection, and Cross-site Request Forgery vulnerabilities in the Siemens COMOS Web unified ...

Siemens Healthineers syngo fastView (Update A)

Title

Siemens Healthineers syngo fastView (Update A)

Published

Feb. 10, 2022, 4:45 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-21-350-16

Summary

This updated advisory is a follow-up to the original advisory titled ICSA-21-350-16 Siemens Healthineers syngo fastView that was published December 16, 2021, to the ICS webpage on www.cisa.gov/uscert. This advisory contains mitigation for an Out-of-bounds Write vulnerability in the Siemens Healthineers syngo fastView software for digital imaging and communications.

Siemens SIMATIC WinCC (Update A)

Title

Siemens SIMATIC WinCC (Update A)

Published

Feb. 10, 2022, 4:40 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-21-315-03

Summary

This updated advisory is a follow-up to the original advisory titled ICSA-21-315-03 Siemens SIMATIC WinCC that was published November 11, 2021, to the ICS webpage on www.cisa.gov/uscert. This advisory contains mitigations for a Path Traversal, and Insertion of Sensitive Information into Log File vulnerabilities in Siemens SIMATIC WinCC, a SCADA ...

Siemens LOGO! CMR and SIMATIC RTU 3000 (Update A)

Title

Siemens LOGO! CMR and SIMATIC RTU 3000 (Update A)

Published

Feb. 10, 2022, 4:35 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-21-257-13

Summary

This updated advisory is a follow-up to the original advisory titled ICSA-21-257-13 Siemens LOGO! CMR and SIMATIC RTU 3000 that was published September 14, 2021, on the ICS webpage on www.cisa.gov/uscert. This advisory contains mitigations for a Use of Insufficiently Random Values vulnerability in Siemens LOGO! CMR controllers and SIMATIC ...

09.02.2022

US CERT

AA22-040A: 2021 Trends Show Increased Globalized Threat of Ransomware

Title

AA22-040A: 2021 Trends Show Increased Globalized Threat of Ransomware

Published

Feb. 9, 2022, 3 p.m.

URL

https://us-cert.cisa.gov/ncas/alerts/aa22-040a

Summary

Original release date: February 9, 2022SummaryImmediate Actions You Can Take Now to Protect Against Ransomware: • Update your operating system and software. • Implement user training and phishing exercises to raise awareness about the risk of suspicious links and attachments. • If you use Remote Desktop Protocol (RDP), secure and ...

Mitsubishi Electric FA Engineering Software Products (Update D)

Title

Mitsubishi Electric FA Engineering Software Products (Update D)

Published

Feb. 8, 2022, 4:05 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-21-049-02

Summary

This updated advisory is a follow-up to the advisory update titled ICSA-21-049-02 Mitsubishi Electric FA Engineering Software Products (Update C) that was published November 16, 2021, to the ICS webpage on www.cisa.gov/uscert.This advisory contains mitigations for Heap-based Buffer Overflow, and Improper Handling of Length Parameter Inconsistency vulnerabilities in Mitsubishi Electric ...

Mitsubishi Electric Factory Automation Engineering Products (Update F)

Title

Mitsubishi Electric Factory Automation Engineering Products (Update F)

Published

Feb. 8, 2022, 4 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-20-212-04

Summary

This updated advisory is a follow-up to the advisory update titled ICSA-20-212-04 Mitsubishi Electric Factory Automation Engineering Products (Update E) that was published November 18, 2021, to the ICS webpage on www.cisa.gov/uscert. This advisory contains mitigations for an Unquoted Search Path or Element vulnerability in Mitsubishi Electric Factory Automation Engineering ...

SSA-840188 V1.1 (Last Update: 2022-02-08): Multiple Vulnerabilities in SIMATIC WinCC Affecting Other SIMATIC Software Products

Title

SSA-840188 V1.1 (Last Update: 2022-02-08): Multiple Vulnerabilities in SIMATIC WinCC Affecting Other SIMATIC Software Products

Published

Feb. 8, 2022, 1 a.m.

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-840188.pdf

Summary

Multiple vulnerabilities were found in SIMATIC WinCC that ultimately could allow local or remote attackers to escalate privileges and read, write or delete critical files. Siemens has released updates for several affected products and recommends to update to the latest versions. Siemens is preparing further updates and recommends specific countermeasures ...

SSA-913875 V1.2 (Last Update: 2022-02-08): Frame Aggregation and Fragmentation Vulnerabilities in 802.11

Title

SSA-913875 V1.2 (Last Update: 2022-02-08): Frame Aggregation and Fragmentation Vulnerabilities in 802.11

Published

Feb. 8, 2022, 1 a.m.

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-913875.pdf

Summary

Twelve vulnerabilities in the implementation of frame aggregation and fragmentation of the 802.11 standard, under the name of FragAttacks, have been published. Successful exploitation of these vulnerabilities could allow an attacker within Wi-Fi range to forge encrypted frames, which could result in sensitive data disclosure and possibly traffic manipulation. The ...

SSA-978220 V1.5 (Last Update: 2022-02-08): Denial of Service Vulnerability over SNMP in Multiple Industrial Products

Title

SSA-978220 V1.5 (Last Update: 2022-02-08): Denial of Service Vulnerability over SNMP in Multiple Industrial Products

Published

Feb. 8, 2022, 1 a.m.

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-978220.pdf

Summary

Several industrial products are affected by a vulnerability that could allow remote attackers to conduct a denial of service attack by sending specially crafted packets to port 161/udp (SNMP). Siemens has released updates for several affected products and recommends to update to the new versions. Siemens is preparing further updates ...

SSA-995338 V1.1 (Last Update: 2022-02-08): Multiple Vulnerabilities in COMOS Web

Title

SSA-995338 V1.1 (Last Update: 2022-02-08): Multiple Vulnerabilities in COMOS Web

Published

Feb. 8, 2022, 1 a.m.

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-995338.pdf

Summary

Multiple vulnerabilities were identified in the web components of COMOS that could allow an attacker to conduct code injections, store data in undesired locations, execute arbitrary SQL statements, and run cross-site request forgery attacks. Siemens has released updates for several affected products and recommends to update to the latest versions. ...

SSA-309571 V1.1 (Last Update: 2022-02-08): IPU 2021.1 Vulnerabilities in Siemens Industrial Products using Intel CPUs (June 2021)

Title

SSA-309571 V1.1 (Last Update: 2022-02-08): IPU 2021.1 Vulnerabilities in Siemens Industrial Products using Intel CPUs (June 2021)

Published

Feb. 8, 2022, 1 a.m.

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-309571.pdf

Summary

Intel has published information on vulnerabilities in Intel products in June 2021. This advisory lists the related Siemens Industrial products affected by these vulnerabilities that can be patched by applying the corresponding BIOS update. In this advisory we summarize: “2021.1 IPU – Intel® CSME, SPS and LMS Advisory” Intel-SA-00459, “2021.1 ...

SSA-307392 V1.7 (Last Update: 2022-02-08): Denial of Service in OPC UA in Industrial Products

Title

SSA-307392 V1.7 (Last Update: 2022-02-08): Denial of Service in OPC UA in Industrial Products

Published

Feb. 8, 2022, 1 a.m.

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-307392.pdf

Summary

A vulnerability has been identified in the OPC UA server of several industrial products. The vulnerability could cause a denial of service condition on the service or the device. Siemens has released updates for several affected products and recommends to update to the latest versions. Siemens is preparing further updates ...

SSA-293562 V3.4 (Last Update: 2022-02-08): Denial of Service Vulnerabilities in PROFINET DCP Implementation of Industrial Products

Title

SSA-293562 V3.4 (Last Update: 2022-02-08): Denial of Service Vulnerabilities in PROFINET DCP Implementation of Industrial Products

Published

Feb. 8, 2022, 1 a.m.

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-293562.pdf

Summary

Several industrial devices are affected by two vulnerabilities that could allow an attacker to cause a denial of service condition via PROFINET DCP network packets under certain circumstances. The precondition for this scenario is a direct layer 2 access to the affected products. PROFIBUS interfaces are not affected. Siemens has ...

SSA-211752 V1.1 (Last Update: 2022-02-08): Multiple NTP-Client Related Vulnerabilities in SIMATIC CP 443-1 OPC UA

Title

SSA-211752 V1.1 (Last Update: 2022-02-08): Multiple NTP-Client Related Vulnerabilities in SIMATIC CP 443-1 OPC UA

Published

Feb. 8, 2022, 1 a.m.

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-211752.pdf

Summary

All versions of the SIMATIC CP 443-1 OPC UA contain multiple vulnerabilities in the underlying third party component NTP. Siemens recommends specific countermeasures for products where updates are not, or not yet available.

SSA-102233 V1.7 (Last Update: 2022-02-08): SegmentSmack in VxWorks-based Industrial Devices

Title

SSA-102233 V1.7 (Last Update: 2022-02-08): SegmentSmack in VxWorks-based Industrial Devices

Published

Feb. 8, 2022, 1 a.m.

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-102233.pdf

Summary

The products listed below contain a vulnerability that could allow remote attackers to affect the availability of the devices under certain conditions. The underlying TCP stack can be forced to make very computation expensive calls for every incoming packet which can lead to a Denial-of-Service. Siemens has released an update ...