Today CISA’s NCCIC-ICS published two control system security advisories for products from Siemens and Rockwell Automation.
Siemens Advisory
This advisory describes a missing authentication for critical function vulnerability in the Siemens SIMATIC HMI panels. The vulnerability was reported by Ta-Lun Yen of TXOne IoT/ICS Security Research Labs via the Zero Day Initiative. Siemens has updates available that mitigate the vulnerability. There is no indication that Ta-Lun has been provided an opportunity to verify the efficacy of the fix.
NCCIC-ICS reports that a relatively low-skilled attacker could remotely exploit this vulnerability to allow a remote attacker to gain full access to the device(s) if the Telnet service is enabled.
NOTE: I briefly discussed this vulnerability this last weekend.
Rockwell Advisory
This advisory describes a classic buffer overflow vulnerability in the Rockwell MicroLogix 1400. The vulnerability was reported by Veermata Jijabai Technological Institute. Rockwell provides generic mitigation measures.
NCCIC-ICS reports that an uncharacterized attacker could remotely exploit this vulnerability to result in a denial-of-service condition.
NOTE: I briefly
discussed this vulnerability this last weekend.
Posts
No comments:
Post a Comment