• 1
  • 2 (current)
Thursday, 05.04.2018
16:05
US CERT (ICS)
Moxa MXview
Title
Moxa MXview
Published
April 5, 2018, 4:05 p.m.
URL
https://ics-cert.us-cert.gov/advisories/ICSA-18-095-02
Summary
This advisory includes mitigations for an information exposure vulnerability in the Moxa MXview network management software.
02:00
SIEMENS CERT
SSA-689071 (Last Update: 2018-04-05): DNSMasq Vulnerabilities in SCALANCE W1750D, SCALANCE M800 and SCALANCE S615
Title
SSA-689071 (Last Update: 2018-04-05): DNSMasq Vulnerabilities in SCALANCE W1750D, SCALANCE M800 and SCALANCE S615
Published
April 5, 2018, 2 a.m.
URL
https://cert-portal.siemens.com/productcert/pdf/ssa-689071.pdf
Summary
Multiple vulnerabilities have been identified in SCALANCE W1750D, SCALANCE M800, and SCALANCE S615 devices. The highest scored vulnerability could allow a remote attacker to crash the DNS service or execute arbitrary code. The attacker must be able to craft malicious DNS responses and inject them into the network in order ...
02:00
SIEMENS CERT
SSA-901333 (Last Update: 2018-04-05): KRACK Attacks Vulnerabilities in Industrial Products
Title
SSA-901333 (Last Update: 2018-04-05): KRACK Attacks Vulnerabilities in Industrial Products
Published
April 5, 2018, 2 a.m.
URL
https://cert-portal.siemens.com/productcert/pdf/ssa-901333.pdf
Summary
Multiple vulnerabilities affecting WPA/WPA2 implementations were identified by a researcher and publicly disclosed under the term "Key Reinstallation Attacks" (KRACK). These vulnerabilities could potentially allow an attacker within the radio range of the wireless network to decrypt, replay or inject forged network packets into the wireless communication. Several Siemens Industrial ...
Tuesday, 03.04.2018
16:00
US CERT (ICS)
Siemens Building Technologies Products (Update A)
Title
Siemens Building Technologies Products (Update A)
Published
April 3, 2018, 4 p.m.
URL
https://ics-cert.us-cert.gov/advisories/ICSA-18-093-01
Summary
This updated advisory is a follow-up to the original advisory titled ICSA-18-093-01 Siemens Building Technologies Products that was published April 3, 2018, on the NCCIC/ICS-CERT website. This advisory update includes mitigations for a series of vulnerabilities in Siemens' Building Technologies Products, including stack-based buffer overflows, security features, improper restriction of ...
16:00
US CERT (ICS)
Siemens Building Technologies Products
Title
Siemens Building Technologies Products
Published
April 3, 2018, 4 p.m.
URL
https://ics-cert.us-cert.gov/advisories/ICSA-18-093-01
Summary
This advisory includes mitigations for a series of vulnerabilities in Siemens' Building Technologies Procucts, including stack-based buffer overflow, external control of system or configuration setting, improper restriction ofoperations within the bounds of a memory buffer, NULL pointer deference, XML entity expansion, heap-based buffer overflow, and improper access control.
02:00
SIEMENS CERT
SSA-727467 (Last Update: 2018-04-03): Vulnerabilities in Building Technologies Products
Title
SSA-727467 (Last Update: 2018-04-03): Vulnerabilities in Building Technologies Products
Published
April 3, 2018, 2 a.m.
URL
https://cert-portal.siemens.com/productcert/pdf/ssa-727467.pdf
Summary
The License Management System (LMS), which is used by multiple Siemens' building automation products, includes a vulnerable version of Gemalto Sentinel LDK RTE. Gemalto Sentinel LDK RTE is affected by multiple vulnerabilities that could allow remote code execution. Siemens recommends to update the License Management System used by these products ...
  • 1
  • 2 (current)

Last Updates

BOSCH PSIRT
20.03.2024
CODESYS
28.06.2023
SIEMENS CERT
19.04.2024
US CERT
17.04.2024
US CERT (ICS)
07.05.2024

By Source

Archive

2024
2023
2022
2021
2020
2019
2018
2017

Feeds