Security
Headlines
HeadlinesLatestCVEs

Source

us-cert

Siemens SIMATIC MV500 Devices

This advisory contains mitigations for Insufficient Session Expiration, and Missing Authentication for Critical Function vulnerabilities in the Siemens SIMATIC MV500 Devices Optical Readers.

us-cert
Open in Source
#vulnerability#auth
Siemens Simcenter Femap

This advisory contains mitigations for a Out-of-bounds Write vulnerability in the Simcenter Femap a complex model simulator.

Siemens RUGGEDCOM ROX

This advisory contains mitigations for a Command Injection vulnerability in the Siemens RUGGEDCOM ROX.

Siemens Mendix Excel Importer

This advisory contains mitigations for an XML Entity Expansion vulnerability in the Mendix Excel Importer Module.

Siemens Datalogics File Parsing Vulnerability

This advisory contains mitigations for a Heap-based buffer Overflow vulnerability in the Siemens Teamcenter Visualization.

Siemens PADS Standard/Plus Viewer

This advisory contains mitigations for an Out-of-bounds Read, Out-of-bounds Write, Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in the PADS Standard and Standard Plus, a PCB schematic design and layout environment.

Simcenter Femap and Parasolid

This advisory contains mitigations for an Out-of-bounds Read vulnerability Simcenter Femap, an advanced simulation application, and Parasolid, a 3D geometric modeling tool.

Siemens Mendix Applications

This advisory contains mitigations for an Out-of-bounds Read vulnerability in Siemens Mendix Applications, a high productivity app platform.

Siemens Industrial Products Intel CPUs (Update D)

This updated advisory is a follow-up to the advisory update titled ICSA-21-222-05 Siemens Industrial Products Intel CPU (Update C) that was published March 10, 2022, to the ICS webpage on www.cisa.gov/uscert. This advisory contains mitigations for Missing Encryption of Sensitive Data vulnerabilities in Siemens industrial products using some Intel CPUs.

Siemens SIMATIC Industrial Products (Update B)

This advisory update is a follow-up to the original advisory titled ICSA-22-041-01 Siemens Industrial Products (Update A) that was published February 10, 2022, to the ICS webpage on us-cert.cisa.gov. This advisory contains mitigations for  Operation on a Resource after Expiration or Release, and Missing Release of Memory after Effective Lifetime vulnerabilities in Siemens Industrial Products using the SIMATIC firmware platform.