• 1
  • 2 (current)
Tuesday, 13.07.2021
02:00
SIEMENS CERT
SSA-729965 V1.0: TLS Certificate Validation Vulnerability in SINUMERIK Integrate Operate Client
Title
SSA-729965 V1.0: TLS Certificate Validation Vulnerability in SINUMERIK Integrate Operate Client
Published
July 13, 2021, 2 a.m.
URL
https://cert-portal.siemens.com/productcert/pdf/ssa-729965.pdf
Summary
The latest update for SINUMERIK Integrate Operate Client fixes a vulnerability that could allow an attacker to spoof any SSL server certificate and conduct man-in-the-middle attacks. Siemens is preparing updates and recommends specific countermeasures for products where updates are not, or not yet available
02:00
SIEMENS CERT
SSA-772220 V1.0: OpenSSL Vulnerabilities in Industrial Products
Title
SSA-772220 V1.0: OpenSSL Vulnerabilities in Industrial Products
Published
July 13, 2021, 2 a.m.
URL
https://cert-portal.siemens.com/productcert/pdf/ssa-772220.pdf
Summary
OpenSSL has published a security advisory [0] about a vulnerability in OpenSSL versions 1.1.1 < k, that allows an unauthenticated attacker to cause a Denial-of-Service (DoS) if a a maliciously crafted renegotiation message is sent. Siemens is preparing updates and recommends countermeasures for products where updates are not, or not ...
02:00
SIEMENS CERT
SSA-913875 V1.0: Frame Aggregation and Fragmentation Vulnerabilities in 802.11
Title
SSA-913875 V1.0: Frame Aggregation and Fragmentation Vulnerabilities in 802.11
Published
July 13, 2021, 2 a.m.
URL
https://cert-portal.siemens.com/productcert/pdf/ssa-913875.pdf
Summary
Twelve vulnerabilities in the implementation of frame aggregation and fragmentation of the 802.11 standard, under the name of FragAttacks, have been published. Successful exploitation of these vulnerabilities could allow an attacker within Wi-Fi range to forge encrypted frames, which could result in sensitive data disclosure and possibly traffic manipulation. The ...
Thursday, 01.07.2021
16:20
US CERT (ICS)
Sensormatic Electronics C-CURE 9000
Title
Sensormatic Electronics C-CURE 9000
Published
July 1, 2021, 4:20 p.m.
URL
https://us-cert.cisa.gov/ics/advisories/icsa-21-182-02
Summary
This advisory contains mitigations for an Improper Input Validation vulnerability in Sensormatic Electronics C-CURE 9000 industrial software.
16:15
US CERT (ICS)
Delta Electronics DOPSoft
Title
Delta Electronics DOPSoft
Published
July 1, 2021, 4:15 p.m.
URL
https://us-cert.cisa.gov/ics/advisories/icsa-21-182-03
Summary
This advisory contains mitigations for Out-of-bounds Read vulnerabilities in Delta Electronics DOPSoft software.
16:10
US CERT (ICS)
Mitsubishi Electric Air Conditioning System
Title
Mitsubishi Electric Air Conditioning System
Published
July 1, 2021, 4:10 p.m.
URL
https://us-cert.cisa.gov/ics/advisories/icsa-21-182-04
Summary
This advisory contains mitigations for an Incorrect Implementation of Authentication Algorithm vulnerability in Mitsubishi Electric air conditioning systems.
16:05
US CERT (ICS)
Mitsubishi Electric Air Conditioning Systems
Title
Mitsubishi Electric Air Conditioning Systems
Published
July 1, 2021, 4:05 p.m.
URL
https://us-cert.cisa.gov/ics/advisories/icsa-21-182-05
Summary
This advisory contains mitigations for an Improper Restriction of XML External Entity Reference vulnerability in Mitsubishi Electric Air Conditioning Systems.
16:00
US CERT (ICS)
All Bachmann M1 System Processor Modules
Title
All Bachmann M1 System Processor Modules
Published
July 1, 2021, 4 p.m.
URL
https://us-cert.cisa.gov/ics/advisories/icsa-21-026-01-0
Summary
This updated advisory is a follow-up to the advisory titled ICSA-21-026-01P All Bachmann M1 System Processor Modules, posted to the HSIN ICS library on January 26, 2021. This advisory is now being released to the ICS webpage on us-cert.cisa.gov. This advisory contains mitigations for a Use of Password Hash with ...
  • 1
  • 2 (current)

Last Updates

BOSCH PSIRT
15.05.2024
SIEMENS CERT
14.05.2024
US CERT
10.05.2024
US CERT (ICS)
16.05.2024

By Source

Archive

2024
2023
2022
2021
2020
2019
2018
2017

Feeds