Bulletins | CERT@VDE

Rockwell Automation Arena Simulation

Title

Rockwell Automation Arena Simulation

Published

March 26, 2024, 1 p.m.

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-086-03

Summary

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: low attack complexity Vendor: Rockwell Automation Equipment: Arena Simulation Software Vulnerabilities: Out-of-bounds Write, Heap-based Buffer Overflow, Improper Restriction of Operations within the Bounds of a Memory Buffer, Use After Free, Access of Uninitialized Pointer, Out-of-bounds Read 2. RISK EVALUATION Successful exploitation ...

26.03.2024

SSB-201698 V1.0: Risk for Denial of Service attack through Discovery and Basic Configuration Protocol (DCP) communication funct...

Title

SSB-201698 V1.0: Risk for Denial of Service attack through Discovery and Basic Configuration Protocol (DCP) communication functionality

Published

March 26, 2024, 1 a.m.

URL

https://cert-portal.siemens.com/productcert/html/ssb-201698.html

Summary

20.03.2024

BOSCH PSIRT

Command Injection in Bosch Network Synchronizer

Title

Command Injection in Bosch Network Synchronizer

Published

March 20, 2024, 1 a.m.

URL

https://psirt.bosch.com/security-advisories/bosch-sa-152190-bt.html

Summary

BOSCH-SA-152190-BT: A Command Injection vulnerability has been uncovered in the diagnostics interface of the Bosch Network Synchronizer. This vulnerability allows unauthorized users full access to the device.

19.03.2024

Franklin Fueling System EVO 550/5000

Title

Franklin Fueling System EVO 550/5000

Published

March 19, 2024, 1 p.m.

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-079-01

Summary

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.7 ATTENTION: Exploitable remotely/low attack complexity Vendor: Franklin Fueling System Equipment: EVO 550, EVO 5000 Vulnerability: Path Traversal 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to read arbitrary files on the system. 3. TECHNICAL DETAILS 3.1 AFFECTED PRODUCTS ...

Siemens Siveillance Control

Title

Siemens Siveillance Control

Published

March 14, 2024, 1 p.m.

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-074-10

Summary

As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories (CERT Services | Services | Siemens Global). View CSAF 1. EXECUTIVE SUMMARY ...

Siemens SCALANCE XB-200/XC-200/XP-200/XF-200BA/XR-300WG Family

Title

Siemens SCALANCE XB-200/XC-200/XP-200/XF-200BA/XR-300WG Family

Published

March 14, 2024, 1 p.m.

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-074-08

Summary

Siemens SENTRON 7KM PAC3x20

Title

Siemens SENTRON 7KM PAC3x20

Published

March 14, 2024, 1 p.m.

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-074-01

Summary

Siemens RUGGEDCOM APE1808 with Fortigate NGFW Devices

Title

Siemens RUGGEDCOM APE1808 with Fortigate NGFW Devices

Published

March 14, 2024, 1 p.m.

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-074-11

Summary

Siemens Sinteso EN Cerberus PRO EN Fire Protection Systems

Title

Siemens Sinteso EN Cerberus PRO EN Fire Protection Systems

Published

March 14, 2024, 1 p.m.

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-074-09

Summary

Mitsubishi Electric MELSEC-Q/L Series

Title

Mitsubishi Electric MELSEC-Q/L Series

Published

March 14, 2024, 1 p.m.

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-074-14

Summary

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Mitsubishi Electric Equipment: MELSEC-Q/L Series Vulnerabilities: Incorrect Pointer Scaling, Integer Overflow or Wraparound 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow a remote attacker to be able to read arbitrary information or execute malicious ...

Softing edgeConnector

Title

Softing edgeConnector

Published

March 14, 2024, 1 p.m.

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-074-13

Summary

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 7.2 ATTENTION: Low attack complexity Vendor: Softing Equipment: edgeConnector Vulnerabilities: Cleartext Transmission of Sensitive Information, Path Traversal 2. RISK EVALUATION Successful exploitation of these vulnerabilities could create conditions that may allow remote code execution. 3. TECHNICAL DETAILS 3.1 AFFECTED PRODUCTS The following versions ...

https://www.cisa.gov/news-events/ics-advisories/icsa-24-074-06

Siemens SENTRON

Title

Siemens SENTRON

Published

March 14, 2024, 1 p.m.

URL

Summary

Siemens SINEMA Remote Connect Client

Title

Siemens SINEMA Remote Connect Client

Published

March 14, 2024, 1 p.m.

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-27-074-04

Summary

13.03.2024

BOSCH PSIRT

BVMS affected by Autodesk Design Review Multiple Vulnerabilities

Title

BVMS affected by Autodesk Design Review Multiple Vulnerabilities

Published

March 13, 2024, 1 a.m.

URL

https://psirt.bosch.com/security-advisories/bosch-sa-246962-bt.html

Summary

BOSCH-SA-246962-BT: BVMS was using Autodesk Design Review for showing 2D/3D files. Autodesk has published multiple vulnerabilities which when successfully exploited could lead to the execution of arbitrary code.Starting from BVMS version 11.0, the Autodesk Design Review is not used anymore in BVMS, but the BVMS setup does not uninstall the ...

13.03.2024

BOSCH PSIRT

RPS and RPS-LITE operator and communication process vulnerabilities.

Title

RPS and RPS-LITE operator and communication process vulnerabilities.

Published

March 13, 2024, 1 a.m.

URL

https://psirt.bosch.com/security-advisories/bosch-sa-099637-bt.html

Summary

BOSCH-SA-099637-BT: Security vulnerabilities related to password use, management and communication processes in RPS and RPS-LITE introduce potential for a malicious user to compromise the software. Bosch recommends to update to the latest version as soon as possible.

Schneider Electric EcoStruxure Power Design

Title

Schneider Electric EcoStruxure Power Design

Published

March 12, 2024, 1 p.m.

URL

https://www.cisa.gov/news-events/ics-advisories/icsa-24-072-01

Summary

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low Attack Complexity Vendor: Schneider Electric Equipment: EcoStruxure Power Design Vulnerability: Deserialization of Untrusted Data 2. RISK EVALUATION Successful exploitation of this vulnerability may allow for arbitrary code execution. 3. TECHNICAL DETAILS 3.1 AFFECTED PRODUCTS The following versions of Schneider Electric ...

SSA-353002 V1.0: Multiple Vulnerabilities in SCALANCE XB-200 / XC-200 / XP-200 / XF-200BA / XR-300WG Family

Title

SSA-353002 V1.0: Multiple Vulnerabilities in SCALANCE XB-200 / XC-200 / XP-200 / XF-200BA / XR-300WG Family

Published

March 12, 2024, 1 a.m.

URL

https://cert-portal.siemens.com/productcert/html/ssa-353002.html

Summary

SCALANCE XB-200/XC-200/XP-200/XF-200BA/XR-300WG Family is affected by multiple vulnerabilities. CVE-2023-44318 and CVE-2023-44321 were previously published as part of SSA-699386. Siemens is preparing fix versions and recommends countermeasures for products where fixes are not, or not yet available.

SSA-145196 V1.0: Authorization Bypass Vulnerability in Siveillance Control

Title

SSA-145196 V1.0: Authorization Bypass Vulnerability in Siveillance Control

Published

March 12, 2024, 1 a.m.

URL

https://cert-portal.siemens.com/productcert/html/ssa-145196.html

Summary

Siveillance Control does not properly check the list of access groups that are assigned to an individual user. This could enable a locally logged on user to gain write privileges for objects where they only have read privileges. Siemens has released a new version for Siveillance Control and recommends to ...

SSA-711309 V1.6 (Last Update: 2024-03-12): Denial of Service Vulnerability in the OPC UA Implementations of SIMATIC Products

Title

SSA-711309 V1.6 (Last Update: 2024-03-12): Denial of Service Vulnerability in the OPC UA Implementations of SIMATIC Products

Published

March 12, 2024, 1 a.m.

URL

https://cert-portal.siemens.com/productcert/html/ssa-711309.html

Summary

The OPC UA implementations (ANSI C and C++) as used in several SIMATIC products contain a denial of service vulnerability that could allow an unauthenticated remote attacker to create a denial of service condition by sending a specially crafted certificate. Siemens has released updates for several affected products and recommends ...

SSA-792319 V1.0: Missing Read Out Protection in SENTRON 7KM PAC3x20 Devices

Title

SSA-792319 V1.0: Missing Read Out Protection in SENTRON 7KM PAC3x20 Devices

Published

March 12, 2024, 1 a.m.

URL

https://cert-portal.siemens.com/productcert/html/ssa-792319.html

Summary

The read out protection of the internal flash of affected devices was not properly set at the end of the manufacturing process. An attacker with physical access to the device could read out the data. Siemens has released new versions for the affected products and recommends to update to the ...

SSA-699386 V1.2 (Last Update: 2024-03-12): Multiple Vulnerabilities in SCALANCE XB-200 / XC-200 / XP-200 / XF-200BA / XR-300WG ...

Title

SSA-699386 V1.2 (Last Update: 2024-03-12): Multiple Vulnerabilities in SCALANCE XB-200 / XC-200 / XP-200 / XF-200BA / XR-300WG Family before V4.5

Published

March 12, 2024, 1 a.m.

URL

https://cert-portal.siemens.com/productcert/html/ssa-699386.html

Summary

SCALANCE XB-200/XC-200/XP-200/XF-200BA/XR-300WG Family before V4.5 is affected by multiple vulnerabilities. Siemens has released updates for the affected products and recommends to update to the latest versions.

SSA-000072 V1.1 (Last Update: 2024-03-12): Multiple File Parsing Vulnerabilities in Simcenter Femap

Title

SSA-000072 V1.1 (Last Update: 2024-03-12): Multiple File Parsing Vulnerabilities in Simcenter Femap

Published

March 12, 2024, 1 a.m.

URL

https://cert-portal.siemens.com/productcert/html/ssa-000072.html

Summary

Simcenter Femap contains multiple file parsing vulnerabilities that could be triggered when the application reads files in Catia MODEL file formats. If a user is tricked to open a malicious file with any of the affected products, this could lead the application to crash or potentially lead to arbitrary code ...

SSA-770721 V1.0: Multiple Vulnerabilities in SIMATIC RF160B before V2.2

Title

SSA-770721 V1.0: Multiple Vulnerabilities in SIMATIC RF160B before V2.2

Published

March 12, 2024, 1 a.m.

URL

https://cert-portal.siemens.com/productcert/html/ssa-770721.html

Summary

SIMATIC RF160B contain multiple vulnerabilities of different types that could allow an attacker to execute arbitrary code within the context of a privileged process. Siemens has released a new version for SIMATIC RF160B and recommends to update to the latest version.

SSA-366067 V1.0: Multiple Vulnerabilities in Fortigate NGFW before V7.4.1 on RUGGEDCOM APE1808 devices

Title

SSA-366067 V1.0: Multiple Vulnerabilities in Fortigate NGFW before V7.4.1 on RUGGEDCOM APE1808 devices

Published

March 12, 2024, 1 a.m.

URL

https://cert-portal.siemens.com/productcert/html/ssa-366067.html

Summary

Fortinet has published information on vulnerabilities in FORTIOS. This advisory lists the related Siemens Industrial products. Siemens is preparing updates and recommends specific countermeasures for products where updates are not, or not yet available. Siemens recommends to consult and implement the workarounds provided in Fortinet’s upstream security notifications.