Bulletins | CERT@VDE

https://us-cert.cisa.gov/ics/advisories/icsa-22-104-07

Siemens Mendix

Titel

Siemens Mendix

Veröffentlicht

14. April 2022 17:08

URL

Text

This advisory contains mitigations for an Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Siemens Mendix, a software platform to build mobile and web applications.

17:06

Siemens SCALANCE W1700

Titel

Siemens SCALANCE W1700

Veröffentlicht

14. April 2022 17:06

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-104-08

Text

This advisory contains mitigations for Race Condition, and Improper Input Validation vulnerabilities in the Siemens SCALANCE W1700 wireless communication device.

17:04

Siemens SCALANCE X-300 Switches

Titel

Siemens SCALANCE X-300 Switches

Veröffentlicht

14. April 2022 17:04

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-104-09

Text

This advisory contains mitigations for Improper Input Validation, Use of Insufficiently Random Values, Stack-based Buffer Overflow, Cross-site Request Forgery, Improper Access Control, Basic XSS, Classic Buffer Overflow, Out-of-bounds Read vulnerabilities in Siemens SCALANCE X-300 Switches.

16:36

CODESYS

Neues CODESYS Security Advisory 2022-08

Titel

Neues CODESYS Security Advisory 2022-08

Veröffentlicht

14. April 2022 16:36

URL

https://feedpress.me/link/15744/15222179/neues-codesys-security-advisory-2022-08.html

Text

Please check source url for more information.

Mittwoch, 13.04.2022

19:00

US CERT

AA22-103A: APT Cyber Tools Targeting ICS/SCADA Devices

Titel

AA22-103A: APT Cyber Tools Targeting ICS/SCADA Devices

Veröffentlicht

13. April 2022 19:00

URL

https://us-cert.cisa.gov/ncas/alerts/aa22-103a

Text

Original release date: April 13, 2022SummaryActions to Take Today to Protect ICS/SCADA Devices: • Enforce multifactor authentication for all remote access to ICS networks and devices whenever possible. • Change all passwords to ICS/SCADA devices and systems on a consistent schedule, especially all default passwords, to device-unique strong passwords to ...

Dienstag, 12.04.2022

16:20

https://us-cert.cisa.gov/ics/advisories/icsa-22-102-01

Valmet DNA

Titel

Valmet DNA

Veröffentlicht

12. April 2022 16:20

URL

Text

This advisory contains mitigations for an Inadequate Encryption Strength vulnerability in Valmet DNA distributed control system products.

16:15

Mitsubishi Electric MELSEC-Q Series C Controller Module

Titel

Mitsubishi Electric MELSEC-Q Series C Controller Module

Veröffentlicht

12. April 2022 16:15

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-102-02

Text

This advisory contains mitigations for a Heap-based Buffer Overflow vulnerability in some MELSEC-Q Series C Controller Modules using Wind River VxWorks Version 6.4.

16:05

Mitsubishi Electric GT25-WLAN

Titel

Mitsubishi Electric GT25-WLAN

Veröffentlicht

12. April 2022 16:05

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-102-04

Text

This advisory contains mitigations for Improper Removal of Sensitive Information Before Storage or Transfer, Inadequate Encryption Strength, Missing Authentication for Critical Function, Injection, and Improper Input Validation vulnerabilities in Mitsubishi Electric GT25-WLAN wireless communication units.

16:00

Aethon TUG Home Base Server

Titel

Aethon TUG Home Base Server

Veröffentlicht

12. April 2022 16:00

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-102-05

Text

This advisory contains mitigations for Missing Authorization, Channel Accessible by Non-endpoint, and Cross-site Scripting vulnerabilities in the Aethon TUG Home Base Server; a server used to control and communicate with autonomous mobile robots in hospitals.

SSA-676336 V1.1 (Last Update: 2022-04-12): OpenSSH Vulnerabilities in SCALANCE X-200 and X-300/X408 Switches

Titel

SSA-676336 V1.1 (Last Update: 2022-04-12): OpenSSH Vulnerabilities in SCALANCE X-200 and X-300/X408 Switches

Veröffentlicht

12. April 2022 02:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-676336.pdf

Text

The latest update of the SCALANCE X-200 and X-300/X408 switches families fixes multiple OpenSSH vulnerabilities. The most severe of these vulnerabilities could allow a denial of service condition. Siemens has released updates for several affected products and recommends to update to the latest versions. Siemens is preparing further updates and ...

SSA-764417 V1.2 (Last Update: 2022-04-12): Multiple Vulnerabilities in RUGGEDCOM Devices

Titel

SSA-764417 V1.2 (Last Update: 2022-04-12): Multiple Vulnerabilities in RUGGEDCOM Devices

Veröffentlicht

12. April 2022 02:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-764417.pdf

Text

There is an insecure cryptographic vulnerability for the affected RUGGEDCOM devices. If an attacker were to exploit this, they could gain privileged functions. Siemens recommends specific countermeasures for products where updates are not, or not yet available.

SSA-772220 V1.8 (Last Update: 2022-04-12): OpenSSL Vulnerabilities in Industrial Products

Titel

SSA-772220 V1.8 (Last Update: 2022-04-12): OpenSSL Vulnerabilities in Industrial Products

Veröffentlicht

12. April 2022 02:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-772220.pdf

Text

OpenSSL has published a security advisory [0] about a vulnerability in OpenSSL versions 1.1.1 < 1.1.1k, that allows an unauthenticated attacker to cause a Denial-of-Service (DoS) if a maliciously crafted renegotiation message is sent . Siemens has released updates for several affected products and recommends to update to the latest ...

SSA-780073 V2.1 (Last Update: 2022-04-12): Denial of Service Vulnerability in PROFINET Devices via DCE-RPC Packets

Titel

SSA-780073 V2.1 (Last Update: 2022-04-12): Denial of Service Vulnerability in PROFINET Devices via DCE-RPC Packets

Veröffentlicht

12. April 2022 02:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-780073.pdf

Text

Products that include the Siemens PROFINET-IO (PNIO) stack in versions prior V06.00 are potentially affected by a denial of service vulnerability when multiple legitimate diagnostic package requests are sent to the DCE-RPC interface. Siemens has released updates for several affected products and recommends to update to the new versions. Siemens ...

SSA-787292 V1.1 (Last Update: 2022-04-12): Denial-of-Service Vulnerability in SIMATIC RFID Readers

Titel

SSA-787292 V1.1 (Last Update: 2022-04-12): Denial-of-Service Vulnerability in SIMATIC RFID Readers

Veröffentlicht

12. April 2022 02:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-787292.pdf

Text

The latest updates for SIMATIC RF products fix a vulnerability that could allow an unauthorized attacker to crash the OPC UA service of the affected devices. Siemens has released updates for several affected products and recommends to update to the latest versions. Siemens is preparing further updates and recommends specific ...

SSA-840188 V1.3 (Last Update: 2022-04-12): Multiple Vulnerabilities in SIMATIC WinCC Affecting Other SIMATIC Software Products

Titel

SSA-840188 V1.3 (Last Update: 2022-04-12): Multiple Vulnerabilities in SIMATIC WinCC Affecting Other SIMATIC Software Products

Veröffentlicht

12. April 2022 02:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-840188.pdf

Text

Multiple vulnerabilities were found in SIMATIC WinCC that ultimately could allow local or remote attackers to escalate privileges and read, write or delete critical files. Siemens has released updates for several affected products and recommends to update to the latest versions. Siemens is preparing further updates and recommends specific countermeasures ...

SSA-914168 V1.1 (Last Update: 2022-04-12): Multiple Vulnerabilities in SIMATIC WinCC Affecting Other SIMATIC Software Products

Titel

SSA-914168 V1.1 (Last Update: 2022-04-12): Multiple Vulnerabilities in SIMATIC WinCC Affecting Other SIMATIC Software Products

Veröffentlicht

12. April 2022 02:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-914168.pdf

Text

Multiple vulnerabilities were found in SIMATIC WinCC that ultimately could allow attackers to retrieve and brute force password hashes and access other systems. Siemens has released updates for several affected products and recommends to update to the latest versions. Siemens is preparing further updates and recommends specific countermeasures for products ...

SSA-995338 V1.2 (Last Update: 2022-04-12): Multiple Vulnerabilities in COMOS Web

Titel

SSA-995338 V1.2 (Last Update: 2022-04-12): Multiple Vulnerabilities in COMOS Web

Veröffentlicht

12. April 2022 02:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-995338.pdf

Text

Multiple vulnerabilities were identified in the web components of COMOS that could allow an attacker to conduct code injections, store data in undesired locations, execute arbitrary SQL statements, and run cross-site request forgery attacks. Siemens has released updates for several affected products and recommends to update to the latest versions. ...

SSA-978220 V1.6 (Last Update: 2022-04-12): Denial of Service Vulnerability over SNMP in Multiple Industrial Products

Titel

SSA-978220 V1.6 (Last Update: 2022-04-12): Denial of Service Vulnerability over SNMP in Multiple Industrial Products

Veröffentlicht

12. April 2022 02:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-978220.pdf

Text

Several industrial products are affected by a vulnerability that could allow remote attackers to conduct a denial of service attack by sending specially crafted packets to port 161/udp (SNMP). Siemens has released updates for several affected products and recommends to update to the new versions. Siemens is preparing further updates ...

SSA-316850 V1.0: Unauthenticated File Access in SICAM A8000 Devices

Titel

SSA-316850 V1.0: Unauthenticated File Access in SICAM A8000 Devices

Veröffentlicht

12. April 2022 02:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-316850.pdf

Text

SICAM A8000 CP-8050 and CP-8031 devices contain vulnerabilities that could allow an attacker to access files without authentication. Siemens has released updates for the affected products and recommends to update to the latest versions.

SSA-350757 V1.0: Improper Access Control Vulnerability in TIA Portal Affecting S7-1200 and S7-1500 CPUs Web Server (Incl. Relat...

Titel

SSA-350757 V1.0: Improper Access Control Vulnerability in TIA Portal Affecting S7-1200 and S7-1500 CPUs Web Server (Incl. Related ET200 CPUs and SIPLUS variants)

Veröffentlicht

12. April 2022 02:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-350757.pdf

Text

An attacker could achieve privilege escalation on the web server of certain devices configured by SIMATIC STEP 7 (TIA Portal) due to incorrect handling of the webserver’s user management configuration during downloading. This only affects the S7-1200 and S7-1500 CPUs’ (incl. related ET200 CPUs and SIPLUS variants) web server, when ...

SSA-392912 V1.0: Multiple Denial Of Service Vulnerabilities in SCALANCE W1700 Devices

Titel

SSA-392912 V1.0: Multiple Denial Of Service Vulnerabilities in SCALANCE W1700 Devices

Veröffentlicht

12. April 2022 02:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-392912.pdf

Text

Vulnerabilities have been identified in devices of the SCALANCE W-1700 (11ac) family that could allow an attacker to cause various denial of service conditions. Siemens has released updates for the affected products and recommends to update to the latest versions.

SSA-414513 V1.0: Information Disclosure Vulnerability in Mendix

Titel

SSA-414513 V1.0: Information Disclosure Vulnerability in Mendix

Veröffentlicht

12. April 2022 02:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-414513.pdf

Text

An information disclosure vulnerability in Mendix applications was discovered. The vulnerability could allow to read sensitive data. Siemens has released an update for the Mendix Applications using Mendix 9 and recommends to update to the latest version. Siemens recommends countermeasures for products where updates are not, or not yet available.