Bulletins | CERT@VDE

SSA-671286 (Last Update: 2020-07-14): Multiple Vulnerabilities in SCALANCE Products

Title

SSA-671286 (Last Update: 2020-07-14): Multiple Vulnerabilities in SCALANCE Products

Published

July 14, 2020, 2 a.m.

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-671286.pdf

Summary

The latest updates for the below mentioned products contain fixes for multiple vulnerabilities. The most severe could allow authenticated local users with physical access to the device to execute arbitrary commands on the device under certain conditions. Siemens has released updates for the affected products and recommends that customers update ...

SSA-631949 (Last Update: 2020-07-14): Ripple20 and Intel SPS Vulnerabilities in SPPA-T3000 Solutions

Title

SSA-631949 (Last Update: 2020-07-14): Ripple20 and Intel SPS Vulnerabilities in SPPA-T3000 Solutions

Published

July 14, 2020, 2 a.m.

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-631949.pdf

Summary

SPPA-T3000 solutions are affected by vulnerabilities that were recently dislosed by JSOF research lab (“Ripple20”) for the TCP/IP stack used in APC UPS systems, and by Intel for the Server Platform Services (SPS) used in SPPA-T3000 Application Server and Terminal Server hardware. The advisory provides information to what amount SPAA-T3000 ...

SSA-604937 (Last Update: 2020-07-14): Multiple Web Server Vulnerabilities in Opcenter Execution Core

Title

SSA-604937 (Last Update: 2020-07-14): Multiple Web Server Vulnerabilities in Opcenter Execution Core

Published

July 14, 2020, 2 a.m.

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-604937.pdf

Summary

The latest update of Opcenter Execution Core fixes multiple vulnerabilities where the most severe could allow an attacker to perform a cross-site scripting (XSS) attack under certain conditions. Siemens has released an update for the Opcenter Execution Core and recommends that customers update to the latest version. Siemens recommends specific ...

SSA-589181 (Last Update: 2020-07-14): Denial-Of-Service in SIMATIC S7-200 SMART CPU Family Devices

Title

SSA-589181 (Last Update: 2020-07-14): Denial-Of-Service in SIMATIC S7-200 SMART CPU Family Devices

Published

July 14, 2020, 2 a.m.

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-589181.pdf

Summary

The latest update for SIMATIC S7-200 SMART fixes a vulnerability that could allow an attacker to cause a permanent Denial-of-Service of an affected device by sending a large number of crafted packets. Siemens has released an update for the SIMATIC S7-200 SMART CPU family and recommends that customers update to ...

SSA-573753 (Last Update: 2020-07-14): Remote Code Execution in Siemens LOGO! Web Server

Title

SSA-573753 (Last Update: 2020-07-14): Remote Code Execution in Siemens LOGO! Web Server

Published

July 14, 2020, 2 a.m.

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-573753.pdf

Summary

The latest update for LOGO! 8 BM devices fixes a vulnerability that could allow remote code execution in the web server functionality. Siemens provides a firmware update for the latest versions of LOGO! BM.

SSA-508982 (Last Update: 2020-07-14): Denial-of-Service Vulnerability in SIMATIC S7-300 CPUs, SIMATIC TDC, and SINUMERIK Contro...

Title

SSA-508982 (Last Update: 2020-07-14): Denial-of-Service Vulnerability in SIMATIC S7-300 CPUs, SIMATIC TDC, and SINUMERIK Controller over Profinet

Published

July 14, 2020, 2 a.m.

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-508982.pdf

Summary

The latest firmware update for the S7-300 CPUs fixes a vulnerability that could allow an unauthenticated attacker with network access to cause a denial-of-service condition. SINUMERIK 840D sl Controller, which contains a S7-300 CPU, is also affected, as well as SIMATIC TDC. Siemens has released updates for several affected products ...

SSA-473245 (Last Update: 2020-07-14): Denial-of-Service Vulnerability in Profinet Devices

Title

SSA-473245 (Last Update: 2020-07-14): Denial-of-Service Vulnerability in Profinet Devices

Published

July 14, 2020, 2 a.m.

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-473245.pdf

Summary

A vulnerability in affected devices could allow an attacker to perform a denial-of-service attack if a large amount of specially crafted UDP packets are sent to the device. Siemens has released updates for several affected products, and recommends that customers update to the new version. Siemens is preparing further updates ...

SSA-398519 (Last Update: 2020-07-14): Vulnerabilities in Intel CPUs (November 2019)

Title

SSA-398519 (Last Update: 2020-07-14): Vulnerabilities in Intel CPUs (November 2019)

Published

July 14, 2020, 2 a.m.

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-398519.pdf

Summary

Intel has published information on vulnerabilities in Intel products in November 2019. In this advisory Siemens only explicitly mentions the vulnerabilities from the “Intel® CPU Security Advisory” and one vulnerability from “Intel® CSME, Intel® SPS, Intel® TXE, Intel® AMT, Intel® PTT and Intel® DAL Advisory” and lists the Siemens IPC ...

SSA-364335 (Last Update: 2020-07-14): Clear Text Transmission Vulnerability on SIMATIC HMI Panels

Title

SSA-364335 (Last Update: 2020-07-14): Clear Text Transmission Vulnerability on SIMATIC HMI Panels

Published

July 14, 2020, 2 a.m.

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-364335.pdf

Summary

A clear text transmission vulnerability in SIMATIC HMI panels could allow an attacker to access sensitive information under certain circumstances. Siemens recommends specific countermeasures to mitigate this vulnerability.

SSA-346262 (Last Update: 2020-07-14): Denial-of-Service in Industrial Products

Title

SSA-346262 (Last Update: 2020-07-14): Denial-of-Service in Industrial Products

Published

July 14, 2020, 2 a.m.

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-346262.pdf

Summary

Several industrial products are affected by a vulnerability that could allow remote attackers to conduct a Denial-of-Service (DoS) attack by sending specially crafted packets to port 161/udp (SNMP). Siemens has released updates for several affected products, and recommends that customers update to the new version. Siemens is preparing further updates ...

SSA-312271 (Last Update: 2020-07-14): Unquoted Search Path Vulnerabilities in Windows-based Industrial Software Applications

Title

SSA-312271 (Last Update: 2020-07-14): Unquoted Search Path Vulnerabilities in Windows-based Industrial Software Applications

Published

July 14, 2020, 2 a.m.

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-312271.pdf

Summary

The latest update for affected products fix local privilege escalation vulnerabilities that could allow authorized local users with administrative privileges to execute custom code with SYSTEM level privileges. Siemens has released updates for some of the affected products, and is working on further updates. For the remaining affected products, Siemens ...

SSA-305120 (Last Update: 2020-07-14): Vulnerabilities in SICAM MMU, SICAM T and SICAM SGU

Title

SSA-305120 (Last Update: 2020-07-14): Vulnerabilities in SICAM MMU, SICAM T and SICAM SGU

Published

July 14, 2020, 2 a.m.

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-305120.pdf

Summary

SICAM MMU, SICAM T and the discontinued SICAM SGU devices are affected by multiple security vulnerabilities which could allow an attacker to perform a variety of attacks. This may include unauthenticated firmware installation, remote code execution and leakage of confidential data like passwords. Siemens has released updates to introduce authentication ...

SSA-293562 (Last Update: 2020-07-14): Vulnerabilities in Industrial Products

Title

SSA-293562 (Last Update: 2020-07-14): Vulnerabilities in Industrial Products

Published

July 14, 2020, 2 a.m.

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-293562.pdf

Summary

Several industrial devices are affected by two vulnerabilities that could allow an attacker to cause a Denial-of-Service condition via PROFINET DCP network packets under certain circumstances. The precondition for this scenario is a direct layer 2 access to the affected products. PROFIBUS interfaces are not affected. Siemens has released updates ...

SSA-270778 (Last Update: 2020-07-14): Denial-of-Service Vulnerability in SIMATIC PCS 7, SIMATIC WinCC and SIMATIC NET PC Software

Title

SSA-270778 (Last Update: 2020-07-14): Denial-of-Service Vulnerability in SIMATIC PCS 7, SIMATIC WinCC and SIMATIC NET PC Software

Published

July 14, 2020, 2 a.m.

URL

https://cert-portal.siemens.com/productcert/pdf/ssa-270778.pdf

Summary

A Denial-of-Service vulnerability was found in SIMATIC PCS 7, SIMATIC WinCC and SIMATIC NET PC software when encrypted communication is enabled. The vulnerability could allow an attacker with network access to cause a Denial-of-Service condition under certain circumstances (versions prior to SIMATIC WinCC V7.3 or SIMATIC PCS 7 V8.1 are ...

AA20-195A: Critical Vulnerability in SAP NetWeaver AS Java

US CERT

Title

AA20-195A: Critical Vulnerability in SAP NetWeaver AS Java

Published

July 14, 2020, 1:07 a.m.

URL

https://us-cert.cisa.gov/ncas/alerts/aa20-195a

Summary

Original release date: July 13, 2020SummaryOn July 13, 2020 EST, SAP released a security update to address a critical vulnerability, CVE-2020-6287, affecting the SAP NetWeaver Application Server (AS) Java component LM Configuration Wizard. An unauthenticated attacker can exploit this vulnerability through the Hypertext Transfer Protocol (HTTP) to take control of ...

09.07.2020

Phoenix Contact Automation Worx Software Suite

Title

Phoenix Contact Automation Worx Software Suite

Published

July 9, 2020, 4:10 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-20-191-01

Summary

This advisory contains mitigations for Stack-Based Buffer overflow and Out-of-Bounds Read vulnerabilities in Phoenix Contact Automation Worx Software Suite.

09.07.2020

Rockwell Automation Logix Designer Studio 5000

Title

Rockwell Automation Logix Designer Studio 5000

Published

July 9, 2020, 4:05 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-20-191-02

Summary

This advisory contains mitigations for Stack-Based Buffer Overflow and Out-of-Bounds Read vulnerabilities in Rockwell Automation Studio 5000 Logix Designer.

08.07.2020

https://us-cert.cisa.gov/ics/advisories/icsa-20-189-01

Grundfos CIM 500

Title

Grundfos CIM 500

Published

July 8, 2020, 4:15 a.m.

URL

Summary

This advisory contains mitigations for unprotected storage of credentials and missing authentication for critical function vulnerabilities in Grundfos CIM 500 products.

07.07.2020

Mitsubishi Electric GOT2000 Series

Title

Mitsubishi Electric GOT2000 Series

Published

July 7, 2020, 4:10 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-20-189-02

Summary

This advisory contains mitigations for Improper Restriction of Operations within the Bounds of a Memory Buffer, Session Fixation, NULL Pointer Dereference, Improper Access Control, Argument Injection, and Resource Management Errors vulnerabilities in Mitsubishi Electric GOT2000 Series products.

https://www.us-cert.gov/ics/advisories/icsma-20-184-01

OpenClinic GA

Title

OpenClinic GA

Published

July 2, 2020, 4:15 p.m.

URL

Summary

This advisory contains mitigations for multiple vulnerabilities in OpenClinic GA, an open source integrated hospital information management system.

Nortek Linear eMerge 50P/5000P

Title

Nortek Linear eMerge 50P/5000P

Published

July 2, 2020, 4:10 p.m.

URL

https://www.us-cert.gov/ics/advisories/icsa-20-184-01

Summary

This advisory contains mitigations for Path Traversal, Command Injection, Unrestricted Upload of File with Dangerous Type, Cross-site Request Forgery, and Improper Authentication vulnerabilities in Nortek Linear eMerge 50P-5000P products.

ABB System 800xA Information Manager

Title

ABB System 800xA Information Manager

Published

July 2, 2020, 4:05 p.m.

URL

https://www.us-cert.gov/ics/advisories/icsa-20-184-02

Summary

This advisory contains mitigations for a cross-site scripting vulnerability in ABB System 800xA Information Manager products.

AA20-183A: Defending Against Malicious Cyber Activity Originating from Tor

US CERT

Title

AA20-183A: Defending Against Malicious Cyber Activity Originating from Tor

Published

July 2, 2020, 3 a.m.

URL

https://www.us-cert.gov/ncas/alerts/aa20-183a

Summary

Original release date: July 1, 2020 | Last revised: July 2, 2020SummaryThis advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) and Pre-ATT&CK framework. See the ATT&CK for Enterprise and Pre-ATT&CK frameworks for referenced threat actor techniques. This advisory—written by the Cybersecurity Security and Infrastructure Security Agency (CISA) ...

June 2020

30.06.2020

US CERT

AA20-182A: EINSTEIN Data Trends – 30-day Lookback

Title

AA20-182A: EINSTEIN Data Trends – 30-day Lookback

Published

June 30, 2020, 4:34 p.m.

URL

https://www.us-cert.gov/ncas/alerts/aa20-182a

Summary

Original release date: June 30, 2020SummaryCybersecurity and Infrastructure Security Agency (CISA) analysts have compiled the top detection signatures that have been the most active over the month of May in our national Intrusion Detection System (IDS), known as EINSTEIN. This information is meant to give the reader a closer look ...

30.06.2020