Bulletins | CERT@VDE

SSA-322980 V1.1 (Last Update: 2023-05-09): Denial of Service Vulnerability in SIPROTEC 5 Devices

Title

SSA-322980 V1.1 (Last Update: 2023-05-09): Denial of Service Vulnerability in SIPROTEC 5 Devices

Published

May 9, 2023, 2 a.m.

URL

https://cert-portal.siemens.com/productcert/html/ssa-322980.html

Summary

SIPROTEC 5 devices contain a null pointer dereference vulnerability in the web service. This could allow an attacker to send unauthenticated maliciously crafted http request that could cause denial of service condition of the device. Siemens has released updates for several affected products and recommends to update to the latest ...

SSA-325383 V1.0: Multiple Vulnerabilities in SCALANCE LPE9403 before V2.1

Title

SSA-325383 V1.0: Multiple Vulnerabilities in SCALANCE LPE9403 before V2.1

Published

May 9, 2023, 2 a.m.

URL

https://cert-portal.siemens.com/productcert/html/ssa-325383.html

Summary

SCALANCE LPE9403 is affected by multiple vulnerabilities that could allow an attacker to impact its confidentiality, integrity and availability. Siemens has released an update for the SCALANCE LPE9403 and recommends to update to the latest version.

SSA-712929 V2.0 (Last Update: 2023-05-09): Denial of Service Vulnerability in OpenSSL (CVE-2022-0778) Affecting Industrial Prod...

Title

SSA-712929 V2.0 (Last Update: 2023-05-09): Denial of Service Vulnerability in OpenSSL (CVE-2022-0778) Affecting Industrial Products

Published

May 9, 2023, 2 a.m.

URL

https://cert-portal.siemens.com/productcert/html/ssa-712929.html

Summary

A vulnerability in the openSSL component (CVE-2022-0778, [0]) could allow an attacker to create a denial of service condition by providing specially crafted elliptic curve certificates to products that use a vulnerable version of openSSL. Siemens has released updates for several affected products and recommends to update to the latest ...

SSA-686975 V1.1 (Last Update: 2023-05-09): IPU 2022.3 Vulnerabilities in Siemens Industrial Products using Intel CPUs

Title

SSA-686975 V1.1 (Last Update: 2023-05-09): IPU 2022.3 Vulnerabilities in Siemens Industrial Products using Intel CPUs

Published

May 9, 2023, 2 a.m.

URL

https://cert-portal.siemens.com/productcert/html/ssa-686975.html

Summary

Intel has published information on vulnerabilities in Intel products in November 2022. This advisory lists the related Siemens Industrial products affected by these vulnerabilities that can be patched by applying the corresponding BIOS update (“2022.3 IPU – BIOS Advisory” Intel-SA-00688). Siemens is preparing updates and recommends specific countermeasures for products ...

SSA-309571 V1.8 (Last Update: 2023-05-09): IPU 2021.1 Vulnerabilities in Siemens Industrial Products using Intel CPUs (June 2021)

Title

SSA-309571 V1.8 (Last Update: 2023-05-09): IPU 2021.1 Vulnerabilities in Siemens Industrial Products using Intel CPUs (June 2021)

Published

May 9, 2023, 2 a.m.

URL

https://cert-portal.siemens.com/productcert/html/ssa-309571.html

Summary

Intel has published information on vulnerabilities in Intel products in June 2021. This advisory lists the related Siemens Industrial products affected by these vulnerabilities that can be patched by applying the corresponding BIOS update. In this advisory we summarize: “2021.1 IPU – Intel® CSME, SPS and LMS Advisory” Intel-SA-00459, “2021.1 ...

SSA-116924 V1.1 (Last Update: 2023-05-09): Path Traversal Vulnerability in TIA Portal

Title

SSA-116924 V1.1 (Last Update: 2023-05-09): Path Traversal Vulnerability in TIA Portal

Published

May 9, 2023, 2 a.m.

URL

https://cert-portal.siemens.com/productcert/html/ssa-116924.html

Summary

TIA Portal contains a path traversal vulnerability that could allow the creation or overwrite of arbitrary files in the engineering system. If the user is tricked to open a malicious PC system configuration file, an attacker could exploit this vulnerability to achieve arbitrary code execution. Siemens has released an update ...

SSA-113131 V1.5 (Last Update: 2023-05-09): Denial of Service Vulnerabilities in SIMATIC S7-400 CPUs

Title

SSA-113131 V1.5 (Last Update: 2023-05-09): Denial of Service Vulnerabilities in SIMATIC S7-400 CPUs

Published

May 9, 2023, 2 a.m.

URL

https://cert-portal.siemens.com/productcert/html/ssa-113131.html

Summary

Two vulnerabilities have been identified in the SIMATIC S7-400 CPU family that could allow an attacker to cause a denial of service condition. In order to exploit the vulnerabilities, an attacker must have access to the affected devices on port 102/tcp via Ethernet, PROFIBUS or Multi Point Interfaces (MPI). Siemens ...

SSA-632164 V1.1 (Last Update: 2023-05-09): External Entity Injection Vulnerability in Polarion ALM

Title

SSA-632164 V1.1 (Last Update: 2023-05-09): External Entity Injection Vulnerability in Polarion ALM

Published

May 9, 2023, 2 a.m.

URL

https://cert-portal.siemens.com/productcert/html/ssa-632164.html

Summary

SSA-789345 V1.0: Code Execution Vulnerabilities in Siveillance Video Event and Management Servers

Title

SSA-789345 V1.0: Code Execution Vulnerabilities in Siveillance Video Event and Management Servers

Published

May 9, 2023, 2 a.m.

URL

https://cert-portal.siemens.com/productcert/html/ssa-789345.html

Summary

Both the Event Server and the Management Server components of Siveillance Video deserialize data without sufficient validations. This could allow an authenticated remote attacker to execute code on the affected system. Siemens has released updates for the affected products and recommends to update to the latest versions. The provided cumulative ...

SSA-932528 V1.0: Multiple File Parsing Vulnerabilities in Solid Edge

Title

SSA-932528 V1.0: Multiple File Parsing Vulnerabilities in Solid Edge

Published

May 9, 2023, 2 a.m.

URL

https://cert-portal.siemens.com/productcert/html/ssa-932528.html

Summary

Solid Edge is affected by multiple memory corruption vulnerabilities that could be triggered when the application reads specially crafted files in various formats such as IFC, OBJ or STP format. If a user is tricked to open a malicious file with the affected application, an attacker could leverage the vulnerability ...

SSA-892048 V1.0: Third-Party Component Vulnerabilities in SINEC NMS before V1.0.3.1

Title

SSA-892048 V1.0: Third-Party Component Vulnerabilities in SINEC NMS before V1.0.3.1

Published

May 9, 2023, 2 a.m.

URL

https://cert-portal.siemens.com/productcert/html/ssa-892048.html

Summary

Multiple vulnerabilities affecting third-party components libexpat and libcurl of SINEC NMS before V1.0.3.1 could allow an attacker to impact SINEC NMS confidentiality, integrity and availability. Siemens has released an update for SINEC NMS and recommends to update to the latest version.

April 2023

SSA-558014 V1.0: Third-Party Component Vulnerabilities in SCALANCE XCM332 before V2.2

Title

SSA-558014 V1.0: Third-Party Component Vulnerabilities in SCALANCE XCM332 before V2.2

Published

April 11, 2023, 2 a.m.

URL

https://cert-portal.siemens.com/productcert/html/ssa-558014.html

Summary

Multiple vulnerabilities in the third-party components cURL, BusyBox, libtirpc, Expat as well as in the Linux Kernel could allow an attacker to impact the SCALANCE XCM332 device’s confidentiality, integrity and availability. Siemens has released an update for the SCALANCE XCM332 and recommends to update to the latest version.

SSA-557541 V1.2 (Last Update: 2023-04-11): Denial-of-Service Vulnerability in SIMATIC S7-400 CPUs

Title

SSA-557541 V1.2 (Last Update: 2023-04-11): Denial-of-Service Vulnerability in SIMATIC S7-400 CPUs

Published

April 11, 2023, 2 a.m.

URL

https://cert-portal.siemens.com/productcert/html/ssa-557541.html

Summary

SIMATIC S7-400 CPU devices contain an input validation vulnerability that could allow an attacker to create a Denial-of-Service condition. A restart is needed to restore normal operations. Siemens has released an update for SIMATIC S7-410 V10 CPU family and SIMATIC S7-400 H V6 CPU family (incl. SIPLUS variants for both) ...

SSA-552702 V1.5 (Last Update: 2023-04-11): Privilege Escalation Vulnerability in the Web Interface of SCALANCE and RUGGEDCOM Pr...

Title

SSA-552702 V1.5 (Last Update: 2023-04-11): Privilege Escalation Vulnerability in the Web Interface of SCALANCE and RUGGEDCOM Products

Published

April 11, 2023, 2 a.m.

URL

https://cert-portal.siemens.com/productcert/html/ssa-552702.html

Summary

The products listed below do not properly authorize the change password function of the web interface. This could allow low privileged users to escalate their privileges. Siemens has released updates for several affected products and recommends to update to the latest versions. Siemens recommends specific countermeasures for products where updates ...

SSA-566905 V1.0: Multiple Denial of Service Vulnerabilities in the Webserver of Industrial Products

Title

SSA-566905 V1.0: Multiple Denial of Service Vulnerabilities in the Webserver of Industrial Products

Published

April 11, 2023, 2 a.m.

URL

https://cert-portal.siemens.com/productcert/html/ssa-566905.html

Summary

Multiple vulnerabilities in the affected products could allow an unauthorized attacker with network access to the webserver of an affected products to perform a denial of service attack. Siemens has released updates for several affected products and recommends to update to the latest versions. Siemens is preparing further updates and ...

SSA-572164 V1.0: Luxion KeyShot Vulnerability in Solid Edge

Title

SSA-572164 V1.0: Luxion KeyShot Vulnerability in Solid Edge

Published

April 11, 2023, 2 a.m.

URL

https://cert-portal.siemens.com/productcert/html/ssa-572164.html

Summary

The Solid Edge installation package includes a specific version of the third-party product KeyShot from Luxion : https://www.keyshot.com, which may not contain the latest security fixes provided by Luxion. Siemens recommends to update KeyShot according to the information in the Luxion Security Advisory LSA-610622: https://download.keyshot.com/cert/lsa-610622/lsa-610622.pdf.

SSA-592007 V2.0 (Last Update: 2023-04-11): Denial of Service Vulnerability in Industrial Products

Title

SSA-592007 V2.0 (Last Update: 2023-04-11): Denial of Service Vulnerability in Industrial Products

Published

April 11, 2023, 2 a.m.

URL

https://cert-portal.siemens.com/productcert/html/ssa-592007.html

Summary

Several industrial controllers are affected by a security vulnerability that could allow an attacker to cause a denial of service condition via PROFINET DCP network packets under certain circumstances. Precondition for this scenario is a direct OSI Layer 2 access to the affected products. PROFIBUS interfaces are not affected. Siemens ...

SSA-549234 V1.3 (Last Update: 2023-04-11): Denial-of-Service Vulnerability in SIMATIC NET CP Modules

Title

SSA-549234 V1.3 (Last Update: 2023-04-11): Denial-of-Service Vulnerability in SIMATIC NET CP Modules

Published

April 11, 2023, 2 a.m.

URL

https://cert-portal.siemens.com/productcert/html/ssa-549234.html

Summary

A denial of service vulnerability was identified in different types of Communication Processors. An attacker could exploit this vulnerability causing the device to become un-operational until the device is restarted. Siemens has released updates for several affected products and recommends to update to the latest versions. Siemens recommends specific countermeasures ...

SSA-676336 V1.2 (Last Update: 2023-04-11): OpenSSH Vulnerabilities in SCALANCE X-200 and X-300/X408 Switches

Title

SSA-676336 V1.2 (Last Update: 2023-04-11): OpenSSH Vulnerabilities in SCALANCE X-200 and X-300/X408 Switches

Published

April 11, 2023, 2 a.m.

URL

https://cert-portal.siemens.com/productcert/html/ssa-676336.html

Summary

The latest update of the SCALANCE X-200 and X-300/X408 switches families fixes multiple OpenSSH vulnerabilities. The most severe of these vulnerabilities could allow a denial of service condition. Siemens has released updates for several affected products and recommends to update to the latest versions. Siemens is preparing further updates and ...

SSA-642810 V1.0: JT File Parsing Vulnerability in JT Open and JT Utilities

Title

SSA-642810 V1.0: JT File Parsing Vulnerability in JT Open and JT Utilities

Published

April 11, 2023, 2 a.m.

URL

https://cert-portal.siemens.com/productcert/html/ssa-642810.html

Summary

JT Open Toolkit and JT Utilities are affected by a memory corruption vulnerability that could be triggered while parsing JT files. If a user is tricked to open a malicious JT file with any of the affected products, this could cause the application to crash or potentially lead to arbitrary ...

SSA-632164 V1.0: External Entity Injection Vulnerability in Polarion ALM

Title

SSA-632164 V1.0: External Entity Injection Vulnerability in Polarion ALM

Published

April 11, 2023, 2 a.m.

URL

https://cert-portal.siemens.com/productcert/html/ssa-632164.html

Summary

Polarion ALM is vulnerable to XML External Entity (XXE) injection attack that could allow an attacker to potentially disclose confidential data. Siemens has released an update for Polarion ALM and recommends to update to the latest version, and update specific configurations to mitigate against the vulnerability. The configuration changes to ...

SSA-603476 V1.4 (Last Update: 2023-04-11): Web Vulnerabilities in SIMATIC NET CP 343-1/CP 443-1 Modules and SIMATIC S7-300/S7-4...

Title

SSA-603476 V1.4 (Last Update: 2023-04-11): Web Vulnerabilities in SIMATIC NET CP 343-1/CP 443-1 Modules and SIMATIC S7-300/S7-400 CPUs

Published

April 11, 2023, 2 a.m.

URL

https://cert-portal.siemens.com/productcert/html/ssa-603476.html

Summary

SIMATIC CP 343-1 Advanced/CP-443-1 Advanced devices and SIMATIC S7-300/S7-400 CPUs are affected by two vulnerabilities. One of the vulnerabilities could allow remote attackers to perform operations as an authenticated user under certain conditions. Siemens has released updates for several affected products and recommends to update to the latest versions. Siemens ...

SSA-691715 V1.0: Vulnerability in OPC Foundation Local Discovery Server Affecting Siemens Products

Title

SSA-691715 V1.0: Vulnerability in OPC Foundation Local Discovery Server Affecting Siemens Products

Published

April 11, 2023, 2 a.m.

URL

https://cert-portal.siemens.com/productcert/html/ssa-691715.html

Summary

A vulnerability was identified in OPC Foundation Local Discovery Server which also affects Siemens products that could allow an attacker to escalate privileges under certain circumstances. Siemens has released an update for SIMATIC WinCC and recommends to update to the latest version. Siemens is preparing further updates and recommends specific ...

SSA-710008 V1.3 (Last Update: 2023-04-11): Multiple Web Vulnerabilities in SCALANCE Products

Title

SSA-710008 V1.3 (Last Update: 2023-04-11): Multiple Web Vulnerabilities in SCALANCE Products

Published

April 11, 2023, 2 a.m.

URL

https://cert-portal.siemens.com/productcert/html/ssa-710008.html

Summary

SCALANCE devices contain multiple vulnerabilities in MSPS based product lines that could allow authenticated remote attackers to execute custom code or create a XSS situation, as well as unauthenticated remote attackers to create a denial of service condition. Siemens has released updates for several affected products and recommends to update ...