Bulletins

SIEMENS CERT
09/08/2020

SSA-381684 (Last Update: 2020-09-08): Improper Password Protection during Authentication in SIMATIC S7-300 and S7-400 CPUs

A vulnerability has been identified in SIMATIC S7-300 and S7-400 CPU families, which could result in credential disclosure. Siemens recommends countermeasures as there are currently no fixes available.
SIEMENS CERT
09/08/2020

SSA-251935 (Last Update: 2020-09-08): Multiple Privilege Escalation Vulnerabilities in SIMATIC RTLS Locating Manager

The latest update for SIMATIC RTLS Locating Manager fixes various vulnerabilities that could allow a low-privileged local user to escalate privileges. Siemens recommends to apply the update of the SIMATIC RTLS Locating Manager.
SIEMENS CERT
08/11/2020

SSA-535640 (Last Update: 2020-08-11): Vulnerability in Industrial Products

Various industrial products use the Discovery Service of the OPC UA protocol stack by the OPC foundation https://github.com/OPCFoundation/UA-.NETStandard and could therefore be affected by the remote resource consumption attacks (CVE-2017-12069).
SIEMENS CERT
08/11/2020

SSA-591405 (Last Update: 2020-08-11): Web Vulnerabilities in SCALANCE S-600 Family

The firmware for SCALANCE S-600 family devices contains multiple web vulnerabilities. The vulnerabilities could allow an remote attacker to conduct Denial-of-Service attacks or perform Cross-Site Scripting attacks. Siemens recommends specific countermeasures for products where updates are not, or not yet available.
SIEMENS CERT
08/11/2020

SSA-809841 (Last Update: 2020-08-11): Buffer Overflow Vulnerability in Third-Party Component pppd

The latest update for SCALANCE M-800 / S615 and RUGGEDCOM RM1224 devices fixes a buffer overflow vulnerability in the third party component pppd that could allow an attacker with network access to an affected device to execute custom code on the device. Siemens has released updates for affected devices and …
SIEMENS CERT
08/11/2020

SSA-786743 (Last Update: 2020-08-11): Code Injection Vulnerability in Advanced Reporting for Desigo CC and Desigo CC Compact

The extension module Advanced Reporting for Desigo CC and Desigo CC Compact contains a code injection vulnerability, which could be exploited if the extension module is installed on the server and configured. Siemens has released patches for the affected products and recommends specific countermeasures for unpatched systems.
SIEMENS CERT
08/11/2020

SSA-712518 (Last Update: 2020-08-11): Information Disclosure Vulnerability (Kr00k) in Industrial Wi-Fi Products

An information disclosure vulnerability (CVE-2019-15126, also known as Kr00k) could allow an attacker to read a discrete set of traffic over the air after a Wi-Fi device state change. Siemens is preparing updates and recommends specific countermeasures for products where updates are not, or not yet available.
SIEMENS CERT
08/11/2020

SSA-388646 (Last Update: 2020-08-11): Local Privilege Escalation in Automation License Manager

The latest update for Automation License Manager (ALM) fixes a vulnerability that could allow local users to locally escalate privileges and modify files that should be protected against writing. Siemens has released an update for ALM 6 and recommends that customers update to the latest version. Siemens recommends specific countermeasures …