• 1
  • 2
  • 3 (current)
Tuesday, 10.09.2024
02:00
SIEMENS CERT
SSA-753746 V1.4 (Last Update: 2024-09-10): Denial of Service Vulnerabilities in SIMATIC WinCC Affecting Other SIMATIC Software ...
Title
SSA-753746 V1.4 (Last Update: 2024-09-10): Denial of Service Vulnerabilities in SIMATIC WinCC Affecting Other SIMATIC Software Products
Published
Sept. 10, 2024, 2 a.m.
URL
https://cert-portal.siemens.com/productcert/html/ssa-753746.html
Summary
Two null point dereference vulnerabilities affect multiple SIMATIC software products. These could allow an attacker to cause a persistent denial of service condition in the RPC Server of these products. Siemens has released new versions for the affected products and recommends to update to the latest versions.
02:00
SIEMENS CERT
SSA-721642 V1.0: Injection Vulnerability in SCALANCE W700 802.11 AX Family Before V2.4
Title
SSA-721642 V1.0: Injection Vulnerability in SCALANCE W700 802.11 AX Family Before V2.4
Published
Sept. 10, 2024, 2 a.m.
URL
https://cert-portal.siemens.com/productcert/html/ssa-721642.html
Summary
Siemens has released new versions for the affected products and recommends to update to the latest versions.
Thursday, 05.09.2024
14:00
US CERT (ICS)
Hughes Network Systems WL3000 Fusion Software
Title
Hughes Network Systems WL3000 Fusion Software
Published
Sept. 5, 2024, 2 p.m.
URL
https://www.cisa.gov/news-events/ics-advisories/icsa-24-249-01
Summary
View CSAF 1. EXECUTIVE SUMMARY CVSS v4 7.1 ATTENTION: Low attack complexity Vendor: Hughes Network Systems Equipment: WL3000 Fusion Software Vulnerabilities: Insufficiently Protected Credentials, Missing Encryption of Sensitive Data 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to obtain read-only access to network configuration information and ...
Wednesday, 04.09.2024
21:01
US CERT
Russian Military Cyber Actors Target US and Global Critical Infrastructure
Title
Russian Military Cyber Actors Target US and Global Critical Infrastructure
Published
Sept. 4, 2024, 9:01 p.m.
URL
https://www.cisa.gov/news-events/cybersecurity-advisories/aa24-249a
Summary
Summary The Federal Bureau of Investigation (FBI), Cybersecurity and Infrastructure Security Agency (CISA), and National Security Agency (NSA) assess that cyber actors affiliated with the Russian General Staff Main Intelligence Directorate (GRU) 161st Specialist Training Center (Unit 29155) are responsible for computer network operations against global targets for the purposes ...
Tuesday, 03.09.2024
14:00
US CERT (ICS)
LOYTEC Electronics LINX Series
Title
LOYTEC Electronics LINX Series
Published
Sept. 3, 2024, 2 p.m.
URL
https://www.cisa.gov/news-events/ics-advisories/icsa-24-247-01
Summary
View CSAF 1. EXECUTIVE SUMMARY CVSS v4 9.3 ATTENTION: Exploitable remotely/low attack complexity/public exploits are available Vendor: LOYTEC electronics GmbH Equipment: LINX series Vulnerabilities: Cleartext Transmission of Sensitive Information, Missing Authentication for Critical Function, Cleartext Storage of Sensitive Information, Improper Access Control 2. RISK EVALUATION Successful exploitation of these vulnerabilities ...
  • 1
  • 2
  • 3 (current)

Last Updates

BOSCH PSIRT
21.08.2024
SIEMENS CERT
12.09.2024
US CERT
04.09.2024
US CERT (ICS)
19.09.2024

By Source

Archive

2024
2023
2022
2021
2020
2019
2018
2017

Feeds