Siemens EN100 Ethernet Module (Update A)

Published

2020-01-14 13:45:03 UTC

Summary

This updated advisory is a follow-up to the original advisory titled ICSA-19-344-07 Siemens EN100 Ethernet Module that was published December 10, 2019, to the ICS webpage on us-cert.gov. This advisory contains mitigations for improper restriction of operations within the bounds of a memory buffer, cross-site scripting, and relative path traversal vulnerabilities in the Siemens EN100 Ethernet Module.