Bulletins | CERT@VDE

SSA-111512 V1.0: Client-side Authentication in SIMATIC WinCC OA

Title

SSA-111512 V1.0: Client-side Authentication in SIMATIC WinCC OA

Published

June 21, 2022, 2 a.m.

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-111512.pdf

Summary

SIMATIC WinCC OA implements client-side only authentication, when neither server-side authentication (SSA) nor Kerberos authentication is enabled. In this configuration, attackers could impersonate other users or exploit the client-server protocol without being authenticated. Siemens recommends to enable server-side authentication (SSA) or Kerberos authentication for all WinCC OA projects, as documented ...

17.06.2022

Hillrom Medical Device Management

Title

Hillrom Medical Device Management

Published

June 17, 2022, 5:08 a.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsma-22-167-01

Summary

This advisory contains mitigations for Use of Hard-coded Password, and Improper Access Control vulnerability in Welch Allyn resting electrocardiograph devices. Hillrom Medical. Welch Allyn, and ELI are registered trademarks of Baxter International, Inc., or its subsidiaries.

17.06.2022

AutomationDirect C-More EA9 HMI

Title

AutomationDirect C-More EA9 HMI

Published

June 17, 2022, 5:06 a.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-167-01

Summary

This advisory contains mitigations for Uncontrolled Search Path Element, Cleartext Transmission of Sensitive Information vulnerabilities in AutomationDirect C-More EA9 human-machine interface products.

AutomationDirect DirectLOGIC with Serial Communication

Title

AutomationDirect DirectLOGIC with Serial Communication

Published

June 16, 2022, 5:04 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-167-02

Summary

This advisory contains mitigations for a Cleartext Transmission of Sensitive Information vulnerability in DirectLOGIC programmable controllers with serial communication.

AutomationDirect DirectLOGIC with Ethernet

Title

AutomationDirect DirectLOGIC with Ethernet

Published

June 16, 2022, 5:02 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-167-03

Summary

This advisory contains mitigations for Uncontrolled Resource Consumption, and Cleartext Transmission of Sensitive Information vulnerabilities in AutomationDirect DirectLOGIC programmable logic Ethernet controllers.

Siemens Mendix SAML Module

Title

Siemens Mendix SAML Module

Published

June 16, 2022, 5 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-167-04

Summary

This advisory contains mitigations for Improper Restriction of XML External Entity Reference, and Cross-site Scripting vulnerabilities in the Siemens Mendix SAML Module.

Siemens Apache HTTP Server

Title

Siemens Apache HTTP Server

Published

June 16, 2022, 4:56 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-167-06

Summary

This advisory contains mitigations for NULL Pointer Dereference, Out-of-bounds Write, and Server-side Request Forgery (SSRF) vulnerabilities in the Siemens Apache HTTP Server.

Siemens SICAM GridEdge

Title

Siemens SICAM GridEdge

Published

June 16, 2022, 4:52 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-167-08

Summary

This advisory contains mitigations for Missing Authentication for Critical Function, and Resource Leak vulnerabilities in the Siemens SICAM GridEdge Essential ARM.

Siemens SCALANCE LPE9403 Third-Party Vulnerabilities

Title

Siemens SCALANCE LPE9403 Third-Party Vulnerabilities

Published

June 16, 2022, 4:50 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-167-09

Summary

This advisory contains mitigations for vulnerabilities in the Siemens SCALANCE LPE9403, a processing power extension for the SCALANCE family of products.

Siemens SCALANCE XM-400 and XR-500

Title

Siemens SCALANCE XM-400 and XR-500

Published

June 16, 2022, 4:48 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-167-10

Summary

This advisory contains mitigations for an Improper Validation of Integrity Check Value vulnerability in the Siemens SCALANCE XM-400 and XR-500 industrial switches.

Siemens Xpedition Designer

Title

Siemens Xpedition Designer

Published

June 16, 2022, 4:46 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-167-11

Summary

This advisory contains mitigations for an Incorrect Permission Assignment for Critical Resource vulnerability in the Siemens Xpedition Designer PCB design flow products.

Siemens Spectrum Power Systems

Title

Siemens Spectrum Power Systems

Published

June 16, 2022, 4:44 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-167-12

Summary

This advisory contains mitigations for a Use of Hard-coded Credentials vulnerability in the Siemens Spectrum Power data modelling and monitoring system.

Siemens OpenSSL Affected Industrial Products

Title

Siemens OpenSSL Affected Industrial Products

Published

June 16, 2022, 4:40 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-167-14

Summary

This advisory contains mitigations for an Infinite Loop vulnerability in the Siemens OpenSSL Affected Industrial Products.

Johnson Controls Metasys ADS ADX OAS Servers

Title

Johnson Controls Metasys ADS ADX OAS Servers

Published

June 14, 2022, 4:10 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-165-01

Summary

This advisory contains mitigations for Unverified Password Change, and Cross-site Scripting vulnerabilities in the Johnson Controls Metasys ADS ADX OAS Servers.

Meridian Cooperative Meridian

Title

Meridian Cooperative Meridian

Published

June 14, 2022, 4:05 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-165-02

Summary

This advisory contains mitigations for an Improper Access Control vulnerability in Meridian utility software.

Mitsubishi Electric MELSEC-Q/L and MELSEC iQ-R

Title

Mitsubishi Electric MELSEC-Q/L and MELSEC iQ-R

Published

June 14, 2022, 4 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-165-03

Summary

This advisory contains mitigations for an Improper Input Validation vulnerability in the Mitsubishi Electric MELSEC-Q/L Series and MELSEC iQ-R Series Interface Modules.

SSA-145224 V1.0: Vulnerability in OSPF Packet Handling of SCALANCE XM-400 and XR-500 Devices

Title

SSA-145224 V1.0: Vulnerability in OSPF Packet Handling of SCALANCE XM-400 and XR-500 Devices

Published

June 14, 2022, 2 a.m.

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-145224.pdf

Summary

SCALANCE XM-400 and XR-500 devices contain a vulnerability in the OSPF protocol implementation that could allow an unauthenticated remote attacker to cause interruptions in the network. Siemens has released updates for the affected products and recommends to update to the latest versions.

SSA-102233 V2.0 (Last Update: 2022-06-14): SegmentSmack in VxWorks-based Industrial Devices

Title

SSA-102233 V2.0 (Last Update: 2022-06-14): SegmentSmack in VxWorks-based Industrial Devices

Published

June 14, 2022, 2 a.m.

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-102233.pdf

Summary

The products listed below contain a vulnerability that could allow remote attackers to affect the availability of the devices under certain conditions. The underlying TCP stack can be forced to make very computation expensive calls for every incoming packet which can lead to a Denial-of-Service. Siemens has released an update ...

SSA-148078 V1.1 (Last Update: 2022-06-14): Multiple Vulnerabilities in APOGEE/TALON Field Panels

Title

SSA-148078 V1.1 (Last Update: 2022-06-14): Multiple Vulnerabilities in APOGEE/TALON Field Panels

Published

June 14, 2022, 2 a.m.

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-148078.pdf

Summary

Multiple vulnerabilities in the APOGEE PXC and TALON TC series of products could allow unauthenticated attackers to download sensitive information through the integrated webserver. Siemens has released updates for several affected products and recommends to update to the latest versions. Siemens recommends countermeasures for products where updates are not, or ...

SSA-220589 V1.0: Hard Coded Default Credential Vulnerability in Teamcenter

Title

SSA-220589 V1.0: Hard Coded Default Credential Vulnerability in Teamcenter

Published

June 14, 2022, 2 a.m.

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-220589.pdf

Summary

Siemens has released updates for Teamcenter that fixes a security vulnerability related to unsecure storage of user credentials. This vulnerability affects Java EE Server Manager HTML Adaptor. This service is not installed by default and currently also obsoleted. Siemens has released updates for the affected products and recommends to update ...

SSA-222547 V1.0: Third-Party Component Vulnerabilities in SCALANCE LPE9403 before V2.0

Title

SSA-222547 V1.0: Third-Party Component Vulnerabilities in SCALANCE LPE9403 before V2.0

Published

June 14, 2022, 2 a.m.

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-222547.pdf

Summary

Multiple vulnerabilities in the third-party components CivetWeb, Docker, Linux Kernel and systemd could allow an attacker to impact SCALANCE LPE9403 confidentiality, integrity and availability. Siemens has released an update for the SCALANCE LPE9403 and recommends to update to the latest version.

SSA-244969 V1.5 (Last Update: 2022-06-14): OpenSSL Vulnerability in Industrial Products

Title

SSA-244969 V1.5 (Last Update: 2022-06-14): OpenSSL Vulnerability in Industrial Products

Published

June 14, 2022, 2 a.m.

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-244969.pdf

Summary

OpenSSL has published a security advisory [0] about a vulnerability in OpenSSL versions 1.1.1 < 1.1.1l and 1.0.2 < 1.0.2za that allows an attacker to cause a denial of service (DoS) or to disclose private memory content. Siemens has released updates for several affected products and recommends to update to ...

SSA-254054 V1.2 (Last Update: 2022-06-14): Spring Framework Vulnerability (Spring4Shell or SpringShell, CVE-2022-22965) - Impac...

Title

SSA-254054 V1.2 (Last Update: 2022-06-14): Spring Framework Vulnerability (Spring4Shell or SpringShell, CVE-2022-22965) - Impact to Siemens Products

Published

June 14, 2022, 2 a.m.

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-254054.pdf

Summary

A vulnerability in Spring Framework was disclosed, that could allow remote unauthenticated attackers to execute code on vulnerable systems. The vulnerability is tracked as CVE-2022-22965 and is also known as “Spring4Shell” or “SpringShell”. Siemens is currently investigating to determine which products are affected and is continuously updating this advisory as ...

SSA-301589 V1.3 (Last Update: 2022-06-14): Multiple File Parsing Vulnerabilities in Solid Edge, JT2Go and Teamcenter Visualization

Title

SSA-301589 V1.3 (Last Update: 2022-06-14): Multiple File Parsing Vulnerabilities in Solid Edge, JT2Go and Teamcenter Visualization

Published

June 14, 2022, 2 a.m.

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-301589.pdf

Summary

Siemens has released updates for JT2Go, Solid Edge and Teamcenter Visualization to fix multiple file parsing vulnerabilities. If a user is tricked to open a malicious file (crafted as PDF, DXF or PAR) with any of the affected products, this could lead the application to crash or potentially lead to ...