Firma Siemens informuje o nowych podatnościach w swoich produktach oraz aktualizuje starsze biuletyny (P23-278)

utworzone przez | paź 10, 2023 | ICS

10 października 2023 r. firma Siemens opublikowała porady dotyczące bezpieczeństwa mające na celu usunięcie luk w zabezpieczeniach wielu produktów.

IDCVSSLink/Opis
SSA-8430709.8Multiple Vulnerabilities in SCALANCE W1750D
SSA-8296567.8Stack Overflow Vulnerability in Xpedition Layout Browser
SSA-7848496.7Direct Memory Access Vulnerabilities in SIMATIC CP Devices
SSA-7708907.5Path Traversal Vulnerability in the Web Server of CPCI85 Firmware of SICAM A8000 Devices
SSA-7129297.5Denial of Service Vulnerability in OpenSSL (CVE-2022-0778) Affecting Industrial Products UPDATE
SSA-7113097.5Denial of Service Vulnerability in the OPC UA Implementations of SIMATIC Products UPDATE
SSA-7100089.1Multiple Web Vulnerabilities in SCALANCE Products UPDATE
SSA-6474557.1Multiple Vulnerabilities in Nozomi Guardian/CMC before 22.6.2 on RUGGEDCOM APE1808 devices
SSA-5943738.3Cross-Site-Scripting (XSS) Vulnerability in SINEMA Server V14
SSA-5247787.8File Parsing Vulnerabilities in Tecnomatix Plant Simulation
SSA-5161748.4Wi-Fi Encryption Bypass Vulnerabilities in SCALANCE W1750D UPDATE
SSB-439005n/aVulnerabilities in the additional GNU/Linux subsystem of the SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP UPDATE
SSA-4135657.6Multiple Vulnerabilities in SCALANCE Products UPDATE
SSA-3868129.8Remote Code Execution Vulnerability in Simcenter Amesim before V2021.1
SSA-3631077.8An Improper Initialization Vulnerability Affects SIMATIC WinCC Kiosk Mode UPDATE
SSA-2954835.3User Enumeration Vulnerability in Mendix Forgot Password Module
SSA-2857956.5Denial of Service in OPC-UA in Industrial Products UPDATE
SSA-2500857.3Multiple Vulnerabilities in SINEC NMS and SINEMA Server UPDATE
SSA-2405419.0WIBU Systems CodeMeter Heap Buffer Overflow Vulnerability in Industrial Products UPDATE
SSA-2033747.4Multiple OpenSSL Vulnerabilities in SCALANCE W1750D Devices UPDATE
SSA-1602437.8Multiple Vulnerabilities in SINEC NMS before V2.0
SSA-1346519.8Hard Coded SSH ID in CPCI85 Firmware of SICAM A8000 Devices
SSA-0354667.8Incorrect Permission Assignment in SICAM PAS/PQS