Review – 31 Advisories and 1 Update Published – Part 1

Today CISA’s NCCIC-ICS published 31 control systems security advisories for products from Siemens (22) and Rockwell (9). They also published an update for an advisory for products from Güralp. For ease of publication, I am splitting this post in half with 16 Siemens advisories in Part 1 and the remainder in Part 2.

Advisories

Web Installer Advisory - This advisory describes an uncontrolled search path element vulnerability in the Siemens Web Installer.

BFCClient Advisory - This advisory discusses five vulnerabilities in the Siemens BFCClient.

RUGGEDCOM Advisory #1 - This advisory describes an authentication bypass through alternate path or channel vulnerability in the Siemens RUGGEDCOM ROX II family.

RUGGEDCOM Advisory #2 - This advisory that describes an unrestricted upload of file with dangerous type vulnerability in the Siemens RUGGEDCOM ROX II Family.

RUGGEDCOM Advisory #3 - This advisory discusses two vulnerabilities in the Siemens RUGGEDCOM APE1808 product. These are third-party (Nozomi Networks) vulnerabilities.

RUGGEDCOM Advisory #4 - This advisory discusses three vulnerabilities in the Siemens RUGGEDCOM CROSSBOW Station Access Controller.

SINUMERIK Advisory - This advisory describes an authentication bypass via alternate path or channel vulnerability in the Siemens SINUMERIK products.

SIMOTION Advisory - This advisory describes an improper restriction of an XML external entity reference vulnerability in the Siemens SIMOTION SCOUT and SINAMICS STARTER product.   

SINEC Advisory #1 - This advisory discusses seven vulnerabilities in the Siemens SINEC Traffic Analyzer.

SINEC Advisory #2 - This advisory discusses 163 vulnerabilities in the Siemens SINEC OS.

SINEC Advisory #3 - This advisory discusses 489 vulnerabilities in the Siemens SINEC OS.

SICAM Advisory - This advisory describes two cleartext storage of sensitive information vulnerabilities in the Siemens SICAM Q100/Q200.

SIMATIC Advisory #1 - This advisory describes an improper input validation vulnerability in the Siemens SIMATIC RTLS Locating Manager.

SIMATIC Advisory #2 - This advisory describes a deserialization of untrusted data vulnerability in the Siemens SIMATIC S7-PLCSIM products.

SIMATIC Advisory #3 - This advisory describes two vulnerabilities in the Siemens SIMATIC RTLS Locating Manager.

SIPROTEC Advisory #1 - This advisory describes an improper check for unusual or exceptional conditions vulnerability in the Siemens SIPROTEC 4 and SIPROTEC 4 Compact products.

SIPROTEC Advisory #2 - This advisory describes an allocation of resources without limit or throttling vulnerability in the Siemens SIPROTEC 5.

 

For more information on these advisories, see my article at CFSN Detailed Analysis - https://patrickcoyle.substack.com/p/31-advisories-and-1-update-published - subscription required.