Bulletins | CERT@VDE

SSA-750499 V1.0: Weak Encryption Vulnerability in SIPROTEC 5 Devices

Titel

SSA-750499 V1.0: Weak Encryption Vulnerability in SIPROTEC 5 Devices

Veröffentlicht

9. Juli 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-750499.html

Text

The SIPROTEC 5 devices are supporting weak encryption. This could allow an unauthorized attacker in a man-in-the-middle position to read any data passed over the connection between legitimate clients and the affected device. Siemens has released new versions for several affected products and recommends to update to the latest versions. ...

SSA-722010 V1.0: Datalogics File Parsing Vulnerability in Teamcenter Visualization and JT2Go

Titel

SSA-722010 V1.0: Datalogics File Parsing Vulnerability in Teamcenter Visualization and JT2Go

Veröffentlicht

9. Juli 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-722010.html

Text

Siemens Teamcenter Visualization and JT2Go are affected by an out of bounds read vulnerability in the APDFL library from Datalogics. If a user is tricked to open a malicious PDF file with the affected products, this could lead the application to crash or potentially lead to arbitrary code execution. Siemens ...

SSA-723487 V1.0: RADIUS Protocol Susceptible to Forgery Attacks (CVE-2024-3596) - Impact to SCALANCE, RUGGEDCOM and Related Pro...

Titel

SSA-723487 V1.0: RADIUS Protocol Susceptible to Forgery Attacks (CVE-2024-3596) - Impact to SCALANCE, RUGGEDCOM and Related Products

Veröffentlicht

9. Juli 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-723487.html

Text

This advisory documents the impact of CVE-2024-3596 (also dubbed “Blastradius”), a vulnerability in the RADIUS protocol, to SCALANCE, RUGGEDCOM and related products. The vulnerability could allow on-path attackers, located between a Network Access Server (the RADIUS client, e.g., SCALANCE or RUGGEDCOM devices) and a RADIUS server (e.g., SINEC INS), to ...

SSA-712929 V2.8 (Last Update: 2024-07-09): Denial of Service Vulnerability in OpenSSL (CVE-2022-0778) Affecting Industrial Prod...

Titel

SSA-712929 V2.8 (Last Update: 2024-07-09): Denial of Service Vulnerability in OpenSSL (CVE-2022-0778) Affecting Industrial Products

Veröffentlicht

9. Juli 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-712929.html

Text

A vulnerability in the openSSL component (CVE-2022-0778, [0]) could allow an attacker to create a denial of service condition by providing specially crafted elliptic curve certificates to products that use a vulnerable version of openSSL. Siemens has released new versions for several affected products and recommends to update to the ...

SSA-711309 V2.0 (Last Update: 2024-07-09): Denial of Service Vulnerability in the OPC UA Implementations of SIMATIC Products

Titel

SSA-711309 V2.0 (Last Update: 2024-07-09): Denial of Service Vulnerability in the OPC UA Implementations of SIMATIC Products

Veröffentlicht

9. Juli 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-711309.html

Text

The OPC UA implementations (ANSI C and C++) as used in several SIMATIC products contain a denial of service vulnerability that could allow an unauthenticated remote attacker to create a denial of service condition by sending a specially crafted certificate. Siemens has released new versions for several affected products and ...

SSA-160243 V1.1 (Last Update: 2024-07-09): Multiple Vulnerabilities in SINEC NMS before V2.0

Titel

SSA-160243 V1.1 (Last Update: 2024-07-09): Multiple Vulnerabilities in SINEC NMS before V2.0

Veröffentlicht

9. Juli 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-160243.html

Text

SINEC NMS before V2.0 is affected by a code injection and a stored cross-site scripting vulnerability. Siemens has released an update for SINEC NMS and recommends to update to the latest version.

SSA-484086 V1.1 (Last Update: 2024-07-09): Multiple Vulnerabilities in SINEMA Remote Connect Server before V3.1

Titel

SSA-484086 V1.1 (Last Update: 2024-07-09): Multiple Vulnerabilities in SINEMA Remote Connect Server before V3.1

Veröffentlicht

9. Juli 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-484086.html

Text

SINEMA Remote Connect Server is affected by multiple vulnerabilities, including A cross-site scripting vulnerability in an error message pop up window (CVE-2022-29034) Several authentication bypass, privilege escalation and integrity check vulnerabilities (CVE-2022-32251 through -32261) A command injection vulnerability in the file upload service (CVE-2022-32262) A chosen-plaintext attack against HTTP over ...

SSA-455250 V1.2 (Last Update: 2024-07-09): Multiple Vulnerabilities in Palo Alto Networks Virtual NGFW on RUGGEDCOM APE1808 dev...

Titel

SSA-455250 V1.2 (Last Update: 2024-07-09): Multiple Vulnerabilities in Palo Alto Networks Virtual NGFW on RUGGEDCOM APE1808 devices before V11.1.2-h3

Veröffentlicht

9. Juli 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-455250.html

Text

Palo Alto Networks has published [1] information on vulnerabilities in PAN-OS. This advisory lists the related Siemens Industrial products affected by these vulnerabilities. Siemens has released a new version of Palo Alto Networks Virtual NGFW for RUGGEDCOM APE1808 and recommends to update to the latest version. Customers are advised to ...

SSA-446448 V2.2 (Last Update: 2024-07-09): Denial of Service Vulnerability in PROFINET Stack Integrated on Interniche Stack

Titel

SSA-446448 V2.2 (Last Update: 2024-07-09): Denial of Service Vulnerability in PROFINET Stack Integrated on Interniche Stack

Veröffentlicht

9. Juli 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-446448.html

Text

The PROFINET (PNIO) stack, when integrated with the Interniche IP stack, contains a vulnerability that could allow an attacker to cause a denial of service condition on affected industrial products. Siemens has released new versions for several affected products and recommends to update to the latest versions. Siemens recommends specific ...

SSA-364175 V1.0: Multiple Vulnerabilities in Palo Alto Networks Virtual NGFW on RUGGEDCOM APE1808 devices

Titel

SSA-364175 V1.0: Multiple Vulnerabilities in Palo Alto Networks Virtual NGFW on RUGGEDCOM APE1808 devices

Veröffentlicht

9. Juli 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-364175.html

Text

Palo Alto Networks has published [1] information on vulnerabilities in PAN-OS. This advisory lists the related Siemens Industrial products affected by these vulnerabilities. Siemens is preparing updates and recommends specific countermeasures for products where updates are not, or not yet available. Customers are advised to consult and implement the workarounds ...

SSA-346262 V3.3 (Last Update: 2024-07-09): Denial of Service Vulnerability in SNMP Interface of Industrial Products

Titel

SSA-346262 V3.3 (Last Update: 2024-07-09): Denial of Service Vulnerability in SNMP Interface of Industrial Products

Veröffentlicht

9. Juli 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-346262.html

Text

Several industrial products are affected by a vulnerability that could allow remote attackers to conduct a denial of service attack by sending specially crafted packets to port 161/udp (SNMP). Siemens has released new versions for several affected products and recommends to update to the latest versions. Siemens is preparing further ...

SSA-313039 V1.0: Deserialization Vulnerability in STEP 7 Safety before V19

Titel

SSA-313039 V1.0: Deserialization Vulnerability in STEP 7 Safety before V19

Veröffentlicht

9. Juli 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-313039.html

Text

Affected applications do not properly restrict the .NET BinaryFormatter when deserializing user-controllable input. This could allow an attacker to cause a type confusion and execute arbitrary code within the affected application. Siemens has released a new version for SIMATIC STEP 7 Safety V18 and recommends to update to the latest ...

SSA-293562 V3.5 (Last Update: 2024-07-09): Denial of Service Vulnerabilities in PROFINET DCP Implementation of Industrial Products

Titel

SSA-293562 V3.5 (Last Update: 2024-07-09): Denial of Service Vulnerabilities in PROFINET DCP Implementation of Industrial Products

Veröffentlicht

9. Juli 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-293562.html

Text

Several industrial devices are affected by two vulnerabilities that could allow an attacker to cause a denial of service condition via PROFINET DCP network packets under certain circumstances. The precondition for this scenario is a direct layer 2 access to the affected products. PROFIBUS interfaces are not affected. Siemens has ...

SSA-883918 V1.0: Information Disclosure Vulnerability in SIMATIC WinCC

Titel

SSA-883918 V1.0: Information Disclosure Vulnerability in SIMATIC WinCC

Veröffentlicht

9. Juli 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-883918.html

Text

Multiple versions of SIMATIC WinCC and SIMATIC PCS 7 do not properly handle certain requests to their web application (WinCC WebNavigator, PCS 7 Web Serser, and PCS 7 Web Diagnostics Server), which may lead to the leak of privileged information. This could allow an unauthenticated remote attacker to retrieve information ...

SSA-868282 V1.0: Multiple Vulnerabilities in SINEMA Remote Connect Client before V3.2 HF1

Titel

SSA-868282 V1.0: Multiple Vulnerabilities in SINEMA Remote Connect Client before V3.2 HF1

Veröffentlicht

9. Juli 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-868282.html

Text

SINEMA Remote Connect Server before V3.2 HF1 is affected by multiple vulnerabilities. Siemens has released a new version for SINEMA Remote Connect Client and recommends to update to the latest version.

Juni 2024

SSA-690517 V1.0: Multiple Vulnerabilities in SCALANCE W700 802.11 AX Family

Titel

SSA-690517 V1.0: Multiple Vulnerabilities in SCALANCE W700 802.11 AX Family

Veröffentlicht

11. Juni 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-690517.html

Text

SCALANCE W700 802.11 AX Family is affected by multiple vulnerabilities. Siemens recommends countermeasures for products where fixes are not, or not yet available.

SSA-625862 V1.0: Multiple Vulnerabilities in Third-Party Components in SIMATIC CP 1542SP-1 and CP 1543SP-1 before V2.3

Titel

SSA-625862 V1.0: Multiple Vulnerabilities in Third-Party Components in SIMATIC CP 1542SP-1 and CP 1543SP-1 before V2.3

Veröffentlicht

11. Juni 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-625862.html

Text

SIMATIC CP 1542SP-1 and CP 1543SP-1 before V2.3 are affected by multiple vulnerabilities in third-party components and the integrated web server. Siemens has released new versions for the affected products and recommends to update to the latest versions.

SSA-711309 V1.9 (Last Update: 2024-06-11): Denial of Service Vulnerability in the OPC UA Implementations of SIMATIC Products

Titel

SSA-711309 V1.9 (Last Update: 2024-06-11): Denial of Service Vulnerability in the OPC UA Implementations of SIMATIC Products

Veröffentlicht

11. Juni 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-711309.html

Text

SSA-238730 V1.0: Out-of-Bounds Write Vulnerabilities in SITOP UPS1600 before V2.5.4

Titel

SSA-238730 V1.0: Out-of-Bounds Write Vulnerabilities in SITOP UPS1600 before V2.5.4

Veröffentlicht

11. Juni 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-238730.html

Text

Multiple out-of-bounds vulnerabilities in third-party components are affecting SITOP UPS1600 before V2.5.4. Attackers could exploit these vulnerabilities and cause limited impact in the affected systems. Siemens has released new versions for the affected products and recommends to update to the latest versions.

SSA-871704 V1.1 (Last Update: 2024-06-11): Multiple Vulnerabilities in SICAM Products

Titel

SSA-871704 V1.1 (Last Update: 2024-06-11): Multiple Vulnerabilities in SICAM Products

Veröffentlicht

11. Juni 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-871704.html

Text

Multiple SICAM products are affected by vulnerabilities that could lead to privilege escalation, remote code execution or information loss namely: SICAM A8000 device firmwares CPC80 for CP-8000/CP-8021/CP-8022 CPCI85 and OPUPI0 for CP-8031/CP-8050 SICAM EGS firmware CPCI85 and OPUPI0 SICAM 8 Software Solution SICORE Siemens has released new versions for the ...

SSA-771940 V1.0: X_T File Parsing Vulnerabilities in Teamcenter Visualization and JT2Go

Titel

SSA-771940 V1.0: X_T File Parsing Vulnerabilities in Teamcenter Visualization and JT2Go

Veröffentlicht

11. Juni 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-771940.html

Text

Teamcenter Visualization and JT2Go is affected by out of bounds read, stack exhaustion and null pointer dereference vulnerabilities that could be triggered when the application reads files in X_T format. If a user is tricked to open a malicious file with the affected applications, an attacker could leverage the vulnerability ...

SSA-832273 V1.3 (Last Update: 2024-06-11): Multiple Vulnerabilities in Fortigate NGFW before V7.4.3 on RUGGEDCOM APE1808 devices

Titel

SSA-832273 V1.3 (Last Update: 2024-06-11): Multiple Vulnerabilities in Fortigate NGFW before V7.4.3 on RUGGEDCOM APE1808 devices

Veröffentlicht

11. Juni 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-832273.html

Text

Fortinet has published information on vulnerabilities in FORTIOS. This advisory lists the related Siemens Industrial products. Siemens is preparing updates and recommends specific countermeasures for products where updates are not, or not yet available. Siemens recommends to consult and implement the workarounds provided in Fortinet’s upstream security notifications.

SSA-024584 V1.0: Authentication Bypass Vulnerability in PowerSys before V3.11

Titel

SSA-024584 V1.0: Authentication Bypass Vulnerability in PowerSys before V3.11

Veröffentlicht

11. Juni 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-024584.html

Text

PowerSys before V3.11 is affected by a vulnerability that could allow a local attacker to bypass authentication, thereby gaining administrative privileges for the managed remote devices. Siemens has released a new version for PowerSys and recommends to update to the latest version.

SSA-900277 V1.0: MODEL File Parsing Vulnerability in Tecnomatix Plant Simulation before V2302.0012 and V2024.0001

Titel

SSA-900277 V1.0: MODEL File Parsing Vulnerability in Tecnomatix Plant Simulation before V2302.0012 and V2024.0001

Veröffentlicht

11. Juni 2024 02:00

URL

https://cert-portal.siemens.com/productcert/html/ssa-900277.html

Text

Tecnomatix Plant Simulation contains a type confusion vulnerability that could be triggered when the application reads MODEL files. If a user is tricked to open a malicious file using the affected application, this could lead to a crash, and potentially also to arbitrary code execution on the target host system. ...