• 1
  • 2 (current)
Dienstag, 11.05.2021
02:00
SIEMENS CERT
SSA-936080 V1.1 (Last Update: 2021-05-11): Multiple Vulnerabilities in Third-Party Component libcurl
Titel
SSA-936080 V1.1 (Last Update: 2021-05-11): Multiple Vulnerabilities in Third-Party Component libcurl
Veröffentlicht
11. Mai 2021 02:00
URL
https://cert-portal.siemens.com/productcert/pdf/ssa-936080.pdf
Text
SIMATIC NET CM 1542-1, SCALANCE SC600 family and SIMATIC NET CP 343-1 Advanced devices are vulnerable to a vulnerability in the third party component libcurl that could allow an attacker to cause a Denial-of-Service condition on the affected devices. Siemens has released an update for SCALANCE SC600. For the remaining ...
02:00
SIEMENS CERT
SSA-794542 V1.1 (Last Update: 2021-05-11): Insecure Folder Permissions in SIMARIS Configuration
Titel
SSA-794542 V1.1 (Last Update: 2021-05-11): Insecure Folder Permissions in SIMARIS Configuration
Veröffentlicht
11. Mai 2021 02:00
URL
https://cert-portal.siemens.com/productcert/pdf/ssa-794542.pdf
Text
The installation of SIMARIS configuration causes insecure folder permissions that could allow vertical privilege escalation. Siemens has released an update for SIMARIS and recommends to update to the latest version.
02:00
SIEMENS CERT
SSA-723417 V1.0: Multiple Vulnerabilities in SCALANCE W1750D
Titel
SSA-723417 V1.0: Multiple Vulnerabilities in SCALANCE W1750D
Veröffentlicht
11. Mai 2021 02:00
URL
https://cert-portal.siemens.com/productcert/pdf/ssa-723417.pdf
Text
Siemens SCALANCE W1750D is a brand-labeled device. Aruba has released a related security advisory ARUBA-PSA-2021-007 disclosing vulnerabilities in its Aruba Instant product line. Siemens is preparing updates and recommends countermeasures for products where updates are not, or not yet available.
02:00
SIEMENS CERT
SSA-919955 V1.0: Information Disclosure Vulnerability in Mendix Database Replication Module
Titel
SSA-919955 V1.0: Information Disclosure Vulnerability in Mendix Database Replication Module
Veröffentlicht
11. Mai 2021 02:00
URL
https://cert-portal.siemens.com/productcert/pdf/ssa-919955.pdf
Text
The latest update of Mendix Database Replication module fixes a infomation disclosure vulnerability. Mendix has released an update for the Mendix Database Replication module and recommends to update to the latest version.
02:00
SIEMENS CERT
SSA-116379 V1.0: Denial-of-Service Vulnerability in OSPF Packet Handling of SCALANCE XM-400 and XR-500 Devices
Titel
SSA-116379 V1.0: Denial-of-Service Vulnerability in OSPF Packet Handling of SCALANCE XM-400 and XR-500 Devices
Veröffentlicht
11. Mai 2021 02:00
URL
https://cert-portal.siemens.com/productcert/pdf/ssa-116379.pdf
Text
SCALANCE XM-400 and XR-500 devices contain a vulnerability in the OSPF protocol implementation that could allow an unauthenticated remote attacker to create a permanent denial-of-service condition. Siemens has released updates for the affected products and recommends to update to the latest versions.
02:00
SIEMENS CERT
SSA-286838 V1.0: Multiple Vulnerabilities in SINAMICS Medium Voltage Products
Titel
SSA-286838 V1.0: Multiple Vulnerabilities in SINAMICS Medium Voltage Products
Veröffentlicht
11. Mai 2021 02:00
URL
https://cert-portal.siemens.com/productcert/pdf/ssa-286838.pdf
Text
SINAMICS medium voltage products, with Sm@rtServer enabled on SIMATIC comfort HMI Panels, are affected by multiple vulnerabilities that could allow an attacker, under certain conditions, to gain full remote access to the HMI. Note that by default Sm@rtServer is disabled, but it can be enabled on request by the system ...
02:00
SIEMENS CERT
SSA-324955 V1.0: SAD DNS Attack in Linux Based Products
Titel
SSA-324955 V1.0: SAD DNS Attack in Linux Based Products
Veröffentlicht
11. Mai 2021 02:00
URL
https://cert-portal.siemens.com/productcert/pdf/ssa-324955.pdf
Text
A vulnerability made public under the name SAD DNS affects Domain Name System resolvers due to a vulnerability in the Linux kernel when handling ICMP packets. The Siemens products which are affected are listed below. For more information please see https://www.saddns.net/. Siemens has released updates for several affected products and ...
  • 1
  • 2 (current)

Letzte Updates

BOSCH PSIRT
20.03.2024
CODESYS
28.06.2023
SIEMENS CERT
19.04.2024
US CERT
17.04.2024
US CERT (ICS)
18.04.2024

Nach Quelle

Archiv

2024
2023
2022
2021
2020
2019
2018
2017

Feeds