Bulletins | CERT@VDE

ABB ASPECT-Enterprise, NEXUS, and MATRIX Series Products

Title

ABB ASPECT-Enterprise, NEXUS, and MATRIX Series Products

Published

Jan. 7, 2025, 1 p.m.

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-25-007-01

Summary

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 10.0 ATTENTION: Exploitable remotely/low attack complexity Vendor: ABB Equipment: ASPECT-Enterprise, NEXUS, and MATRIX series Vulnerabilities: Files or Directories Accessible to External Parties, Improper Validation of Specified Type of Input, Cleartext Transmission of Sensitive Information, Cross-site Scripting, Server-Side Request Forgery (SSRF), Improper Neutralization of ...

December 2024

Tibbo AggreGate Network Manager

Title

Tibbo AggreGate Network Manager

Published

Dec. 19, 2024, 1 p.m.

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-354-05

Summary

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.7 ATTENTION: Exploitable remotely/low attack complexity Vendor: Tibbo Equipment: AggreGate Network Manager Vulnerability: Unrestricted Upload of File with Dangerous Type 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to achieve code execution on the affected device. 3. TECHNICAL DETAILS ...

Hitachi Energy SDM600

Title

Hitachi Energy SDM600

Published

Dec. 19, 2024, 1 p.m.

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-354-02

Summary

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 8.0 ATTENTION: Exploitable from adjacent network Vendor: Hitachi Energy Equipment: SDM600 Vulnerabilities: Origin Validation Error, Incorrect Authorization 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to escalate privileges and access sensitive information. 3. TECHNICAL DETAILS 3.1 AFFECTED PRODUCTS Hitachi ...

Hitachi Energy RTU500 series CMU

Title

Hitachi Energy RTU500 series CMU

Published

Dec. 19, 2024, 1 p.m.

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-354-01

Summary

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 5.9 ATTENTION: Exploitable remotely Vendor: Hitachi Energy Equipment: RTU500 series CMU Vulnerability: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to cause a denial-of-service condition. 3. TECHNICAL DETAILS 3.1 ...

Siemens User Management Component

Title

Siemens User Management Component

Published

Dec. 19, 2024, 1 p.m.

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-354-04

Summary

As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, see Siemens' ProductCERT Security Advisories (CERT Services | Services | Siemens Global). View CSAF 1. EXECUTIVE SUMMARY CVSS ...

Delta Electronics DTM Soft

Title

Delta Electronics DTM Soft

Published

Dec. 19, 2024, 1 p.m.

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-354-03

Summary

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.5 ATTENTION: Low attack complexity Vendor: Delta Electronics Equipment: DTM Soft Vulnerability: Deserialization of Untrusted Data 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to execute arbitrary code. 3. TECHNICAL DETAILS 3.1 AFFECTED PRODUCTS The following Delta Electronics products ...

Schneider Electric Accutech Manager

Title

Schneider Electric Accutech Manager

Published

Dec. 19, 2024, 1 p.m.

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-354-06

Summary

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/low attack complexity Vendor: Schneider Electric Equipment: Accutech Manager Vulnerability: Classic Buffer Overflow 2. RISK EVALUATION Successful exploitation could allow an attacker to cause a crash of the Accutech Manager when receiving a specially crafted request over port 2536/TCP. 3. ...

Hitachi Energy TropOS Devices Series 1400/2400/6400

Title

Hitachi Energy TropOS Devices Series 1400/2400/6400

Published

Dec. 17, 2024, 1 p.m.

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-352-02

Summary

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 5.3 ATTENTION: Exploitable remotely/low attack complexity Vendor: Hitachi Energy Equipment: TropOS Devices Series 1400/2400/6400 Vulnerability: Improper Input Validation 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to cause a denial-of-service condition. 3. TECHNICAL DETAILS 3.1 AFFECTED PRODUCTS The following ...

Rockwell Automation PowerMonitor 1000 Remote

Title

Rockwell Automation PowerMonitor 1000 Remote

Published

Dec. 17, 2024, 1 p.m.

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-352-03

Summary

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 9.3 ATTENTION: Exploitable remotely/low attack complexity Vendor: Rockwell Automation Equipment: PowerMonitor 1000 Remote Vulnerabilities: Unprotected Alternate Channel, Heap-based Buffer Overflow, Classic Buffer Overflow 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to perform edit operations, create admin users, perform ...

ThreatQuotient ThreatQ Platform

Title

ThreatQuotient ThreatQ Platform

Published

Dec. 17, 2024, 1 p.m.

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-352-01

Summary

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.7 ATTENTION: Exploitable remotely/low attack complexity Vendor: ThreatQuotient Inc. Equipment: ThreatQ Platform Vulnerability: Command Injection 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to perform remote code execution. 3. TECHNICAL DETAILS 3.1 AFFECTED PRODUCTS The following versions of ThreatQuotient ...

Schneider Electric Modicon

Title

Schneider Electric Modicon

Published

Dec. 17, 2024, 1 p.m.

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-352-04

Summary

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 9.3 ATTENTION: Exploitable remotely/low attack complexity Vendor: Schneider Electric Equipment: Modicon M241 / M251 / M258 / LMC058 Vulnerability: Improper Input Validation 2. RISK EVALUATION Successful exploitation of this vulnerability could lead to a denial-of-service and a loss of confidentiality and integrity in ...

Siemens Solid Edge SE2024

Title

Siemens Solid Edge SE2024

Published

Dec. 12, 2024, 1 p.m.

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-347-07

Summary

Siemens SENTRON Powercenter 1000

Title

Siemens SENTRON Powercenter 1000

Published

Dec. 12, 2024, 1 p.m.

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-347-10

Summary

As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories (CERT Services | Services | Siemens Global). View CSAF 1. EXECUTIVE SUMMARY ...

Siemens CPCI85 Central Processing/Communication

Title

Siemens CPCI85 Central Processing/Communication

Published

Dec. 12, 2024, 1 p.m.

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-347-01

Summary

Siemens Teamcenter Visualization

Title

Siemens Teamcenter Visualization

Published

Dec. 12, 2024, 1 p.m.

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-347-09

Summary

MOBATIME Network Master Clock

Title

MOBATIME Network Master Clock

Published

Dec. 10, 2024, 1 p.m.

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-345-01

Summary

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 9.3 ATTENTION: Exploitable remotely/Low attack complexity Vendor: MOBATIME Equipment: Network Master Clock - DTS 4801 Vulnerability: Use of Default Credentials 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to take control of the operating system for this product. 3. ...

Schneider Electric FoxRTU Station

Title

Schneider Electric FoxRTU Station

Published

Dec. 10, 2024, 1 p.m.

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-345-03

Summary

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 7.3 ATTENTION: Low Attack Complexity Vendor: Schneider Electric Equipment: FoxRTU Station Vulnerability: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to perform remote code execution. 3. TECHNICAL DETAILS ...

Rockwell Automation Arena (Update A)

Title

Rockwell Automation Arena (Update A)

Published

Dec. 10, 2024, 1 p.m.

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-345-06

Summary

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.5 ATTENTION: Low attack complexity Vendor: Rockwell Automation Equipment: Arena Vulnerabilities: Use After Free, Out-of-bounds Write, Improper Initialization, Out-of-bounds Read, Dependency on Vulnerable Third-Party Component 2. RISK EVALUATION Successful exploitation of these vulnerabilities could result in execution of arbitrary code. 3. TECHNICAL DETAILS ...

Schneider Electric EcoStruxure Foxboro DCS Core Control Services

Title

Schneider Electric EcoStruxure Foxboro DCS Core Control Services

Published

Dec. 10, 2024, 1 p.m.

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-345-02

Summary

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low Attack Complexity Vendor: Schneider Electric Equipment: EcoStruxure Foxboro DCS Core Control Services Vulnerabilities: Out-of-bounds Write, Improper Validation of Array Index, Improper Input Validation 2. RISK EVALUATION Successful exploitation of these vulnerabilities could lead to a loss of system functionality or ...

05.12.2024

Planet Technology Planet WGS-804HPT

Title

Planet Technology Planet WGS-804HPT

Published

Dec. 5, 2024, 1 p.m.

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-340-02

Summary

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 9.3 ATTENTION: Exploitable remotely/Low attack complexity Vendor: Planet Technology Equipment: Planet WGS-804HPT Vulnerabilities: Stack-based Buffer Overflow, Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection'), Integer Underflow (Wrap or Wraparound) 2. RISK EVALUATION Successful exploitation of these vulnerabilities could ...

05.12.2024

AutomationDirect C-More EA9 Programming Software

Title

AutomationDirect C-More EA9 Programming Software

Published

Dec. 5, 2024, 1 p.m.

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-340-01

Summary

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.4 ATTENTION: Low attack complexity Vendor: AutomationDirect Equipment: C-More EA9 Programming Software Vulnerabilities: Stack-based Buffer Overflow 2. RISK EVALUATION Successful exploitation of these vulnerabilities could result in memory corruption; a buffer overflow condition may allow remote code execution. 3. TECHNICAL DETAILS 3.1 AFFECTED ...

https://www.cisa.gov/news-events/ics-advisories/icsa-24-338-01

Ruijie Reyee OS

Title

Ruijie Reyee OS

Published

Dec. 3, 2024, 1 p.m.

URL

Summary

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 9.3 ATTENTION: Exploitable remotely/low attack complexity Vendor: Ruijie Equipment: Reyee OS Vulnerabilities: Weak Password Recovery Mechanism for Forgotten Password, Exposure of Private Personal Information to an Unauthorized Actor, Premature Release of Resource During Expected Lifetime, Insecure Storage of Sensitive Information, Use of Weak ...

ICONICS and Mitsubishi Electric GENESIS64 Products

Title

ICONICS and Mitsubishi Electric GENESIS64 Products

Published

Dec. 3, 2024, 1 p.m.

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-338-04

Summary

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.5 ATTENTION: Low attack complexity Vendor: ICONICS, Mitsubishi Electric Equipment: ICONICS GENESIS64 Product Suite and Mitsubishi Electric MC Works64 Vulnerabilities: Uncontrolled Search Path Element, Dead Code 2. RISK EVALUATION Successful exploitation of these vulnerabilities could result in remote code execution. 3. TECHNICAL DETAILS ...

Open Automation Software

Title

Open Automation Software

Published

Dec. 3, 2024, 1 p.m.

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-338-03

Summary

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.5 ATTENTION: Low attack complexity Vendor: Open Automation Software Equipment: Open Automation Software Vulnerability: Incorrect Execution-Assigned Permissions 2. RISK EVALUATION Successful exploitation of this vulnerability could result in an attacker executing code with escalated privileges. 3. TECHNICAL DETAILS 3.1 AFFECTED PRODUCTS The following ...