Tuesday, February 2, 2021

2 Advisories Published – 2-2-21

Today CISA’s NCCIC-ICS published two control system security advisories for products from Siemens and Rockwell Automation.

Siemens Advisory

This advisory describes a missing authentication for critical function vulnerability in the Siemens SIMATIC HMI panels. The vulnerability was reported by Ta-Lun Yen of TXOne IoT/ICS Security Research Labs via the Zero Day Initiative. Siemens has updates available that mitigate the vulnerability. There is no indication that Ta-Lun has been provided an opportunity to verify the efficacy of the fix.

NCCIC-ICS reports that a relatively low-skilled attacker could remotely exploit this vulnerability to allow a remote attacker to gain full access to the device(s) if the Telnet service is enabled.

NOTE: I briefly discussed this vulnerability this last weekend.

Rockwell Advisory

This advisory describes a classic buffer overflow vulnerability in the Rockwell MicroLogix 1400. The vulnerability was reported by Veermata Jijabai Technological Institute. Rockwell provides generic mitigation measures.

NCCIC-ICS reports that an uncharacterized attacker could remotely exploit this vulnerability to result in a denial-of-service condition.

NOTE: I briefly discussed this vulnerability this last weekend.

No comments:

 
/* Use this with templates/template-twocol.html */