Bulletins | CERT@VDE

Multiple industrial products are affected by a vulnerability in the kernel known as TCP SACK PANIC. The vulnerability could allow a remote attacker to cause a denial of service condition. Siemens has released updates for several affected products and recommends to update to the new versions. Siemens is preparing further ...

02:00

SIEMENS CERT

SSA-535640 V1.5 (Last Update: 2022-04-12): Vulnerability in Industrial Products

Titel

SSA-535640 V1.5 (Last Update: 2022-04-12): Vulnerability in Industrial Products

Veröffentlicht

12. April 2022 02:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-535640.pdf

Text

Various industrial products use the Discovery Service of the OPC UA protocol stack by the OPC foundation https://github.com/OPCFoundation/UA-.NETStandard and could therefore be affected by the remote resource consumption attacks (CVE-2017-12069).

02:00

SIEMENS CERT

SSA-539476 V1.1 (Last Update: 2022-04-12): Siemens SIMATIC NET CP, SINEMA and SCALANCE Products Affected by Vulnerabilities in ...

Titel

SSA-539476 V1.1 (Last Update: 2022-04-12): Siemens SIMATIC NET CP, SINEMA and SCALANCE Products Affected by Vulnerabilities in Third-Party Component strongSwan

Veröffentlicht

12. April 2022 02:00

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-539476.pdf

Text

Vulnerabilities in the third-party component strongSwan could allow an attacker to cause a denial of service (DoS) condition in affected devices by exploiting integer overflow bugs. Siemens has released updates for several affected products and recommends to update to the latest versions. Siemens is preparing further updates and recommends countermeasures ...

Donnerstag, 07.04.2022

16:10

US CERT (ICS)

Pepperl+Fuchs WirelessHART-Gateway

Titel

Pepperl+Fuchs WirelessHART-Gateway

Veröffentlicht

7. April 2022 16:10

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-097-01

Text

This advisory contains mitigations for several vulnerabilities in Pepperl+Fuchs WirelessHART-Gateway industrial networking devices.

16:05

US CERT (ICS)

ABB SPIET800 and PNI800

Titel

ABB SPIET800 and PNI800

Veröffentlicht

7. April 2022 16:05

URL

https://us-cert.cisa.gov/ics/advisories/icsa-22-097-02

Text

This advisory contains mitigations for Incomplete Internal State Distinction, Improper Handling of Unexpected Data Type, and Uncontrolled Resource Consumption vulnerabilities in ABB Symphony Plus SPIET800 and PNI800 network interface modules.

Dienstag, 05.04.2022

16:15

US CERT (ICS)

LifePoint Informatics Patient Portal

Titel

LifePoint Informatics Patient Portal

Veröffentlicht

5. April 2022 16:15

URL

https://us-cert.cisa.gov/ics/advisories/icsma-22-095-01

Text

This advisory contains mitigations for an Authentication Bypass Using Alternate Path or Channel vulnerability in the LifePoint Informatics Patient Portal, a website containing patient health data.

16:00

US CERT (ICS)

Philips Vue PACS (Update B)

Titel

Philips Vue PACS (Update B)

Veröffentlicht

5. April 2022 16:00

URL

https://us-cert.cisa.gov/ics/advisories/icsma-21-187-01

Text

This updated advisory is a follow-up to the advisory update titled ICSMA-21-87-01 Philips Vue PACS (Update A) that was published January 20, 2022, to the ICS webpage on www.cisa.gov/uscert/ics. This advisory contains mitigations for numerous vulnerabilities in Philips Vue PACS products.

…
2
3
4 (current)

Letzte Updates

BOSCH PSIRT

19.07.2024

SIEMENS CERT

22.07.2024

US CERT

24.07.2024

US CERT (ICS)

25.07.2024

Nach Quelle

BOSCH PSIRT (79)
SIEMENS CERT (1721)
US CERT (161)
US CERT (ICS) (1580)

Feeds

RSS / Atom

Letzte Updates

Nach Quelle

Archiv

2024

2023

2022

2021

2020

2019

2018

2017

Feeds