This week we have two vendor disclosures from Siemens and
WAGO with a concurrent publication of exploit code for the WAGO vulnerabilities.
Siemens Advisory
This advisory
describes two denial of service vulnerabilities in the Siemens EN100 Ethernet
communication module and SIPROTEC 5 relays. The vulnerabilities were reported
by Victor Nikitin, Vladislav Suchkov, and Ilya Karpov from ScadaX. Siemens
recommends blocking access to port 102/tcp e.g. with an external firewall.
WAGO Advisory
This VDE-CERT advisory
describes three vulnerabilities in the WAGO e!DISPLAY. The vulnerabilities were
reported by SEC Consult. WAGO has a new firmware version that mitigates the
vulnerabilities. There is no indication that SEC Consult has been provided an
opportunity to verify the efficacy of the fix.
The three reported vulnerabilities are:
• Improper neutralization of input
during web page generation - CVE-2018-12981;
• Unrestricted upload of file with
dangerous type - CVE-2018-12980; and
• Incorrect permission assignment for critical
resource - CVE-2018-12979
The day after VDE-CERT released this advisory SEC Consult published
exploit code for all three vulnerabilities on their web site and other
locations (see here
for example).
Posts
No comments:
Post a Comment