Bulletins | CERT@VDE

Emerson Proficy Machine Edition

Title

Emerson Proficy Machine Edition

Published

Aug. 16, 2022, 4:10 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-228-06

Summary

This advisory contains mitigations for Missing Support for Integrity Check, Improper Access Control, Unrestricted Upload of File with Dangerous Type, Improper Verification of Cryptographic Signature, Insufficient Verification of Data Authenticity, and Path Traversal: ‘\..\filename’ vulnerabilities in Emerson Proficy Machine Edition, an engineering workstation.

16.08.2022

https://us-cert.cisa.gov/ics/advisories/icsa-22-228-07

Sequi PortBloque S

Title

Sequi PortBloque S

Published

Aug. 16, 2022, 4:05 p.m.

URL

Summary

This advisory contains mitigations for Improper Authentication and Improper Authorization vulnerabilities in Sequi PortBloque S, a serial Modbus firewall.

16.08.2022

Siemens Industrial Products with OPC UA (Update B)

Title

Siemens Industrial Products with OPC UA (Update B)

Published

Aug. 16, 2022, 4 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-132-08

Summary

This updated advisory is a follow-up to the original advisory titled ICSA-22-132-08 Siemens Industrial Products with OPC UA (Update A) that was published May 12, 2022, on the ICS webpage on cisa.gov/ics. This advisory contains mitigations for various Siemens Industrial Products with OPC UA products.

AA22-223A: #StopRansomware: Zeppelin Ransomware

US CERT

Title

AA22-223A: #StopRansomware: Zeppelin Ransomware

Published

Aug. 11, 2022, 6 p.m.

URL

https://us-cert.cisa.gov/ncas/alerts/aa22-223a

Summary

Original release date: August 11, 2022SummaryActions to take today to mitigate cyber threats from ransomware: • Prioritize remediating known exploited vulnerabilities. • Train users to recognize and report phishing attempts. • Enable and enforce multifactor authentication. Note: this joint Cybersecurity Advisory (CSA) is part of an ongoing #StopRansomware effort to ...

Siemens Simcenter STAR-CCM+

Title

Siemens Simcenter STAR-CCM+

Published

Aug. 11, 2022, 4:54 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-223-01

Summary

This advisory contains mitigations for an Exposure of Sensitive Information to an Unauthorized Actor vulnerability in versions of Siemens Simcenter STAR-CCM+ products.

Schneider Electric EcoStruxure, EcoStruxure Process Expert, SCADAPack RemoteConnect for x70

Title

Schneider Electric EcoStruxure, EcoStruxure Process Expert, SCADAPack RemoteConnect for x70

Published

Aug. 11, 2022, 4:50 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-223-03

Summary

This advisory contains mitigations for Heap-based Buffer Overflow, Wrap or Wraparound, Classic Buffer Overflow, and Out-of-bounds Write vulnerabilities in products using AT&T Labs Compressor (XMill) and Decompressor (XDemill).

Emerson ROC800, ROC800L and DL8000

Title

Emerson ROC800, ROC800L and DL8000

Published

Aug. 11, 2022, 4:48 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-223-04

Summary

This advisory contains mitigations for an Insufficient Verification of Data Authenticity vulnerability in versions of ROC800, a remote automation controller.

Siemens SICAM A8000 Web Server Module

Title

Siemens SICAM A8000 Web Server Module

Published

Aug. 11, 2022, 4:46 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-223-05

Summary

This advisory contains mitigations for an Improper Access Control vulnerability in versions of SICAM A8000 Web Server Module products.

Siemens SICAM TOOLBOX II

Title

Siemens SICAM TOOLBOX II

Published

Aug. 11, 2022, 4:44 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-223-06

Summary

This advisory contains mitigations for a Use of Hard-coded Credentials vulnerability in versions of SICAM TOOLBOX II, a control and monitoring system.

Siemens SIMATIC S7-400 (Update A)

Title

Siemens SIMATIC S7-400 (Update A)

Published

Aug. 11, 2022, 4:40 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-104-12

Summary

This updated advisory is a follow-up to the advisory update titled ICSA-21-104-12 Siemens SIMATIC S7-400 that was published April 14, 2022, to the ICS webpage on www.cisa.gov/ics. This advisory contains mitigations for an Uncontrolled Resource Consumption vulnerability in the Siemens SIMATIC S7-400.

Siemens Industrial Products Intel CPUs (Update E)

Title

Siemens Industrial Products Intel CPUs (Update E)

Published

Aug. 11, 2022, 4:38 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-21-222-05

Summary

This updated advisory is a follow-up to the advisory update titled ICSA-21-222-05 Siemens Industrial Products Intel CPU (Update D) that was published July 14, 2022, to the ICS webpage on www.cisa.gov/ics. This advisory contains mitigations for a Missing Encryption of Sensitive Data vulnerability in versions of Siemens Industrial Products Intel ...

Siemens Industrial Products LLDP (Update C)

Title

Siemens Industrial Products LLDP (Update C)

Published

Aug. 11, 2022, 4:36 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-21-194-07

Summary

This updated advisory is a follow-up to the original advisory titled ICSA-21-194-07 Siemens Industrial Products LLDP (Update B) that was published August 10, 2021, on the ICS webpage on cisa.gov/ics. This advisory contains mitigations for Classic Buffer Overflow and Uncontrolled Resource Consumption vulnerabilities in versions of Siemens Industrial Products (LLDP).

SafeLogic Designer vulnerabilities

BOSCH PSIRT

Title

SafeLogic Designer vulnerabilities

Published

Aug. 11, 2022, 2 a.m.

URL

https://psirt.bosch.com/security-advisories/bosch-sa-463993.html

Summary

BOSCH-SA-463993: The SafeLogic Designer from Bosch Rexroth contains technology from SICK AG. The manufacturer has published a security bulletin regarding a vulnerability in the .NET framework. \[1\]A vulnerability in a .NET framework class used by SafeLogic Designer allows an attacker to craft malicious project files. Opening/importing such a malicious project ...

Mitsubishi Electric GT SoftGOT2000

Title

Mitsubishi Electric GT SoftGOT2000

Published

Aug. 9, 2022, 4:15 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-221-01

Summary

This advisory contains mitigations for Infinite Loop and OS Command Injection vulnerabilities in versions of Mitsubishi Electric GT SoftGOT2000 software.

https://us-cert.cisa.gov/ics/advisories/icsa-22-221-02

Emerson ControlWave

Title

Emerson ControlWave

Published

Aug. 9, 2022, 4:10 p.m.

URL

Summary

This advisory contains mitigations for an Insufficient Verification of Data Authenticity vulnerabilities in Emerson ControlWave products, a programmable controller.

https://us-cert.cisa.gov/ics/advisories/icsa-22-221-03

Emerson OpenBSI

Title

Emerson OpenBSI

Published

Aug. 9, 2022, 4:05 p.m.

URL

Summary

This advisory contains mitigations for Use of Broken or Risky Cryptographic Algorithm and Use of Hard-coded Cryptographic Key vulnerabilities in Emerson OpenBSI, a set of network communication services.

SSA-480230 V2.4 (Last Update: 2022-08-09): Denial of Service Vulnerability in Webserver of Industrial Products

Title

SSA-480230 V2.4 (Last Update: 2022-08-09): Denial of Service Vulnerability in Webserver of Industrial Products

Published

Aug. 9, 2022, 2 a.m.

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-480230.pdf

Summary

A vulnerability in the affected devices could allow an unauthorized attacker with network access to the webserver of an affected device to perform a denial of service attack. Siemens has released updates for several affected products and recommends to update to the new versions. Siemens is preparing further updates and ...

SSA-243317 V1.1 (Last Update: 2022-08-09): File Parsing Vulnerability in Simcenter Femap and Parasolid

Title

SSA-243317 V1.1 (Last Update: 2022-08-09): File Parsing Vulnerability in Simcenter Femap and Parasolid

Published

Aug. 9, 2022, 2 a.m.

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-243317.pdf

Summary

Simcenter Femap and Parasolid are affected by an out of bounds read vulnerability that could be triggered when the application reads files in NEU format. If a user is tricked to open a malicious file with the affected applications, an attacker could leverage the vulnerability to perform remote code execution ...

SSA-285795 V1.2 (Last Update: 2022-08-09): Denial of Service in OPC-UA in Industrial Products

Title

SSA-285795 V1.2 (Last Update: 2022-08-09): Denial of Service in OPC-UA in Industrial Products

Published

Aug. 9, 2022, 2 a.m.

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-285795.pdf

Summary

A vulnerability in the underlying third party component OPC UA ANSIC Stack (also called Legacy C-Stack) affects several industrial products. The vulnerability could cause a crash of the component that includes the vulnerable part of the stack. Siemens has released updates for several affected products and recommends to update to ...

SSA-244969 V1.7 (Last Update: 2022-08-09): OpenSSL Vulnerability in Industrial Products

Title

SSA-244969 V1.7 (Last Update: 2022-08-09): OpenSSL Vulnerability in Industrial Products

Published

Aug. 9, 2022, 2 a.m.

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-244969.pdf

Summary

OpenSSL has published a security advisory [0] about a vulnerability in OpenSSL versions 1.1.1 < 1.1.1l and 1.0.2 < 1.0.2za that allows an attacker to cause a denial of service (DoS) or to disclose private memory content. Siemens has released updates for several affected products and recommends to update to ...

SSA-829738 V1.1 (Last Update: 2022-08-09): Datalogics File Parsing Vulnerability in Teamcenter Visualization and JT2Go

Title

SSA-829738 V1.1 (Last Update: 2022-08-09): Datalogics File Parsing Vulnerability in Teamcenter Visualization and JT2Go

Published

Aug. 9, 2022, 2 a.m.

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-829738.pdf

Summary

Siemens Teamcenter Visualization and JT2Go are affected by an out of bounds write vulnerability in APDFL library from Datalogics. If a user is tricked to open a malicious PDF file with the affected products, this could lead the application to crash or potentially lead to arbitrary code execution. Siemens has ...

SSA-557541 V1.1 (Last Update: 2022-08-09): Denial-of-Service Vulnerability in SIMATIC S7-400 CPUs

Title

SSA-557541 V1.1 (Last Update: 2022-08-09): Denial-of-Service Vulnerability in SIMATIC S7-400 CPUs

Published

Aug. 9, 2022, 2 a.m.

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-557541.pdf

Summary

SIMATIC S7-400 CPU devices contain an input validation vulnerability that could allow an attacker to create a Denial-of-Service condition. A restart is needed to restore normal operations. Siemens has released an update for SIMATIC S7-410 V10 CPU family and SIMATIC S7-400 H V6 CPU family (incl. SIPLUS variants for both) ...

SSA-710008 V1.0: Multiple Web Vulnerabilities in SCALANCE Products

Title

SSA-710008 V1.0: Multiple Web Vulnerabilities in SCALANCE Products

Published

Aug. 9, 2022, 2 a.m.

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-710008.pdf

Summary

SCALANCE devices contain multiple vulnerabilities in MSPS based product lines that could allow authenticated remote attackers to execute custom code or create a XSS situation, as well as unauthenticated remote attackers to create a denial of service condition. Siemens has released updates for several affected products and recommends to update ...

SSB-439005 V4.6 (Last Update: 2022-08-09): Vulnerabilities in the additional GNU/Linux subsystem of the SIMATIC S7-1500 CPU 151...

Title

SSB-439005 V4.6 (Last Update: 2022-08-09): Vulnerabilities in the additional GNU/Linux subsystem of the SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP

Published

Aug. 9, 2022, 2 a.m.

URL

https://cert-portal.siemens.com/productcert/pdf/ssb-439005.pdf

Summary