Multiple security vulnerabilities have been disclosed in Bosch BCC100 thermostats and Rexroth NXA015S-36V-B smart nutrunners that, if successfully exploited, could allow attackers to execute arbitrary code on affected systems.
Romanian cybersecurity firm Bitdefender, which discovered the flaw in Bosch BCC100 thermostats last August, said the issue could be weaponized by an attacker to

Operational Technology / Network Security

Multiple security vulnerabilities have been disclosed in Bosch BCC100 thermostats and Rexroth NXA015S-36V-B smart nutrunners that, if successfully exploited, could allow attackers to execute arbitrary code on affected systems.

Romanian cybersecurity firm Bitdefender, which discovered the flaw in Bosch BCC100 thermostats last August, said the issue could be weaponized by an attacker to alter the device firmware and implant a rogue version.

Tracked as CVE-2023-49722 (CVSS score: 8.3), the high-severity vulnerability was addressed by Bosch in November 2023.

"A network port 8899 is always open in BCC101/BCC102/BCC50 thermostat products, which allows an unauthenticated connection from a local WiFi network," the company said in an advisory.

The issue, at its core, impacts the WiFi microcontroller that acts as a network gateway for the thermostat's logic microcontroller.

By exploiting the flaw, an attacker could send commands to the thermostat, including writing a malicious update to the device that could either render the device inoperable or act as a backdoor to sniff traffic, pivot onto other devices, and other nefarious activities.

Bosch has corrected the shortcoming in firmware version 4.13.33 by closing the port 8899, which it said was used for debugging purposes.

The German engineering and tech company has also been made aware of over two dozen flaws in Rexroth Nexo cordless nutrunners that an unauthenticated attacker could abuse to disrupt operations, tamper with critical configurations, and even install ransomware.

"Given that the NXA015S-36V-B is certified for safety-critical tasks, an attacker could compromise the safety of the assembled product by inducing suboptimal tightening, or cause damage to it due to excessive tightening," Nozomi Networks said.

The flaws, the operational technology (OT) security firm added, could be used to obtain remote execution of arbitrary code (RCE) with root privileges, and make the pneumatic torque wrench unusable by hijacking the onboard display and disabling the trigger button to demand a ransom.

"Given the ease with which this attack can be automated across numerous devices, an attacker could swiftly render all tools on a production line inaccessible, potentially causing significant disruptions to the final asset owner," the company added.

Patches for the vulnerabilities, which impact several NXA, NXP, and NXV series devices, are expected to be shipped by Bosch by the end of January 2024. In the interim, users are recommended to limit the network reachability of the device as much as possible and review accounts that have login access to the device.

The development comes as Pentagrid identified several vulnerabilities in Lantronix EDS-MD IoT gateway for medical devices, one which could be leveraged by a user with access to the web interface to execute arbitrary commands as root on the underlying Linux host.

Found this article interesting? Follow us on Twitter __ and LinkedIn to read more exclusive content we post.

High-Severity Flaws Uncovered in Bosch Thermostats and Smart Nutrunners

Red Hat Security Advisory 2024-0208-03 - An update for openssl is now available for Red Hat Enterprise Linux 8.6 Extended Update Support.

The following advisory data is extracted from:

https://access.redhat.com/security/data/csaf/v2/advisories/2024/rhsa-2024_0208.json

Red Hat officially shut down their mailing list notifications October 10, 2023.  Due to this, Packet Storm has recreated the below data as a reference point to raise awareness.  It must be noted that due to an inability to easily track revision updates without crawling Red Hat's archive, these advisories are single notifications and we strongly suggest that you visit the Red Hat provided links to ensure you have the latest information available if the subject matter listed pertains to your environment.

- Packet Storm Staff

====================================================================  
Red Hat Security Advisory

Synopsis:           Low: openssl security update  
Advisory ID:        RHSA-2024:0208-03  
Product:            Red Hat Enterprise Linux  
Advisory URL:       https://access.redhat.com/errata/RHSA-2024:0208  
Issue date:         2024-01-12  
Revision:           03  
CVE Names:          CVE-2023-3446  
====================================================================

Summary: 

An update for openssl is now available for Red Hat Enterprise Linux 8.6 Extended Update Support.

Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description:

OpenSSL is a toolkit that implements the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols, as well as a full-strength general-purpose cryptography library.

Security Fix(es):

* openssl: Excessive time spent checking DH keys and parameters (CVE-2023-3446)

* OpenSSL: Excessive time spent checking DH q parameter value (CVE-2023-3817)

* openssl: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow (CVE-2023-5678)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Bug Fix(es):

* openssl: Excessive time spent checking DH q parameter value (JIRA:RHEL-14237)

* openssl: Excessive time spent checking DH keys and parameters (JIRA:RHEL-14243)

* openssl: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow (JIRA:RHEL-16536)

Solution:

https://access.redhat.com/articles/11258

CVEs:

CVE-2023-3446

References:

https://access.redhat.com/security/updates/classification/#low  
https://bugzilla.redhat.com/show_bug.cgi?id=2224962  
https://bugzilla.redhat.com/show_bug.cgi?id=2227852  
https://bugzilla.redhat.com/show_bug.cgi?id=2248616

Red Hat Security Advisory 2024-0208-03

Gentoo Linux Security Advisory 202401-16 - Multiple vulnerabilities have been discovered in FreeRDP, the worst of which could result in code execution. Versions greater than or equal to 2.11.0 are affected.

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  
Gentoo Linux Security Advisory                           GLSA 202401-16  
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  
                                           https://security.gentoo.org/  
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

 Severity: Normal  
    Title: FreeRDP: Multiple Vulnerabilities  
     Date: January 12, 2024  
     Bugs: #881525, #918546  
       ID: 202401-16

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis  
=======  
Multiple vulnerabilities have been discovered in FreeRDP, the worst of  
which could result in code execution.

Background  
=========  
FreeRDP is a free implementation of the remote desktop protocol.

Affected packages  
================  
Package           Vulnerable    Unaffected  
----------------  ------------  ------------  
net-misc/freerdp  < 2.11.0      >= 2.11.0

Description  
==========  
Multiple vulnerabilities have been discovered in FreeRDP. Please review  
the CVE identifiers referenced below for details.

Impact  
=====  
Please review the referenced CVE identifiers for details.

Workaround  
=========  
There is no known workaround at this time.

Resolution  
=========  
All FreeRDP users should upgrade to the latest version:

  # emerge --sync  
  # emerge --ask --oneshot --verbose ">=net-misc/freerdp-2.11.0"

References  
=========  
[ 1 ] CVE-2022-39316  
      https://nvd.nist.gov/vuln/detail/CVE-2022-39316  
[ 2 ] CVE-2022-39317  
      https://nvd.nist.gov/vuln/detail/CVE-2022-39317  
[ 3 ] CVE-2022-39318  
      https://nvd.nist.gov/vuln/detail/CVE-2022-39318  
[ 4 ] CVE-2022-39319  
      https://nvd.nist.gov/vuln/detail/CVE-2022-39319  
[ 5 ] CVE-2022-39320  
      https://nvd.nist.gov/vuln/detail/CVE-2022-39320  
[ 6 ] CVE-2022-39347  
      https://nvd.nist.gov/vuln/detail/CVE-2022-39347  
[ 7 ] CVE-2022-41877  
      https://nvd.nist.gov/vuln/detail/CVE-2022-41877  
[ 8 ] CVE-2023-39350  
      https://nvd.nist.gov/vuln/detail/CVE-2023-39350  
[ 9 ] CVE-2023-39351  
      https://nvd.nist.gov/vuln/detail/CVE-2023-39351  
[ 10 ] CVE-2023-39352  
      https://nvd.nist.gov/vuln/detail/CVE-2023-39352  
[ 11 ] CVE-2023-39353  
      https://nvd.nist.gov/vuln/detail/CVE-2023-39353  
[ 12 ] CVE-2023-39354  
      https://nvd.nist.gov/vuln/detail/CVE-2023-39354  
[ 13 ] CVE-2023-39355  
      https://nvd.nist.gov/vuln/detail/CVE-2023-39355  
[ 14 ] CVE-2023-39356  
      https://nvd.nist.gov/vuln/detail/CVE-2023-39356  
[ 15 ] CVE-2023-40181  
      https://nvd.nist.gov/vuln/detail/CVE-2023-40181  
[ 16 ] CVE-2023-40186  
      https://nvd.nist.gov/vuln/detail/CVE-2023-40186  
[ 17 ] CVE-2023-40187  
      https://nvd.nist.gov/vuln/detail/CVE-2023-40187  
[ 18 ] CVE-2023-40188  
      https://nvd.nist.gov/vuln/detail/CVE-2023-40188  
[ 19 ] CVE-2023-40567  
      https://nvd.nist.gov/vuln/detail/CVE-2023-40567  
[ 20 ] CVE-2023-40569  
      https://nvd.nist.gov/vuln/detail/CVE-2023-40569  
[ 21 ] CVE-2023-40574  
      https://nvd.nist.gov/vuln/detail/CVE-2023-40574  
[ 22 ] CVE-2023-40575  
      https://nvd.nist.gov/vuln/detail/CVE-2023-40575  
[ 23 ] CVE-2023-40576  
      https://nvd.nist.gov/vuln/detail/CVE-2023-40576  
[ 24 ] CVE-2023-40589  
      https://nvd.nist.gov/vuln/detail/CVE-2023-40589

Availability  
===========  
This GLSA and any updates to it are available for viewing at  
the Gentoo Security Website:

 https://security.gentoo.org/glsa/202401-16

Concerns?  
========  
Security is a primary focus of Gentoo Linux and ensuring the  
confidentiality and security of our users' machines is of utmost  
importance to us. Any security concerns should be addressed to  
security@gentoo.org or alternatively, you may file a bug at  
https://bugs.gentoo.org.

License  
======  
Copyright 2024 Gentoo Foundation, Inc; referenced text  
belongs to its owner(s).

The contents of this document are licensed under the  
Creative Commons - Attribution / Share Alike license.

https://creativecommons.org/licenses/by-sa/2.5

Gentoo Linux Security Advisory 202401-16

Gentoo Linux Security Advisory 202401-15 - A vulnerability has been found in Prometheus SNMP Exporter which could allow for authentication bypass. Versions greater than or equal to 0.24.1 are affected.

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  
Gentoo Linux Security Advisory                           GLSA 202401-15  
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  
                                           https://security.gentoo.org/  
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

 Severity: Low  
    Title: Prometheus SNMP Exporter: Basic Authentication Bypass  
     Date: January 12, 2024  
     Bugs: #883649  
       ID: 202401-15

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis  
=======  
A vulnerability has been found in Prometheus SNMP Exporter which could  
allow for authentication bypass.

Background  
=========  
The Prometheus SNMP Exporter is the recommended way to expose SNMP data  
in a format which Prometheus can ingest.

Affected packages  
================  
Package                    Vulnerable    Unaffected  
-------------------------  ------------  ------------  
app-metrics/snmp_exporter  < 0.24.1      >= 0.24.1

Description  
==========  
A vulnerability has been discovered in Prometheus SNMP Exporter. Please  
review the CVE identifier referenced below for details.

Impact  
=====  
A user who knows the password hash of a user capable of performing HTTP  
basic authentication with a vulnerable exporter can use the hash to  
successfully authenticate as that user via cache manipulation, without  
knowing the password from which the hash was derived.

Workaround  
=========  
There is no known workaround at this time.

Resolution  
=========  
All Prometheus SNMP Exporter users should upgrade to the latest version:

  # emerge --sync  
  # emerge --ask --oneshot --verbose ">=app-metrics/snmp_exporter-0.24.1"

References  
=========  
[ 1 ] CVE-2022-46146  
      https://nvd.nist.gov/vuln/detail/CVE-2022-46146

Availability  
===========  
This GLSA and any updates to it are available for viewing at  
the Gentoo Security Website:

 https://security.gentoo.org/glsa/202401-15

Concerns?  
========  
Security is a primary focus of Gentoo Linux and ensuring the  
confidentiality and security of our users' machines is of utmost  
importance to us. Any security concerns should be addressed to  
security@gentoo.org or alternatively, you may file a bug at  
https://bugs.gentoo.org.

License  
======  
Copyright 2024 Gentoo Foundation, Inc; referenced text  
belongs to its owner(s).

The contents of this document are licensed under the  
Creative Commons - Attribution / Share Alike license.

https://creativecommons.org/licenses/by-sa/2.5

Gentoo Linux Security Advisory 202401-15

Debian Linux Security Advisory 5601-1 - Fabian Baeumer, Marcus Brinkmann and Joerg Schwenk discovered that the SSH protocol is prone to a prefix truncation attack, known as the "Terrapin attack". This attack allows a MITM attacker to effect a limited break of the integrity of the early encrypted SSH transport protocol by sending extra messages prior to the commencement of encryption, and deleting an equal number of consecutive messages immediately after encryption starts.

    -----BEGIN PGP SIGNED MESSAGE-----Hash: SHA512- -------------------------------------------------------------------------Debian Security Advisory DSA-5601-1                   security@debian.orghttps://www.debian.org/security/                       Sebastien DelafondJanuary 12, 2024                      https://www.debian.org/security/faq- -------------------------------------------------------------------------Package        : php-phpseclib3CVE ID         : CVE-2023-48795Fabian Baeumer, Marcus Brinkmann and Joerg Schwenk discovered that theSSH protocol is prone to a prefix truncation attack, known as the"Terrapin attack". This attack allows a MITM attacker to effect alimited break of the integrity of the early encrypted SSH transportprotocol by sending extra messages prior to the commencement ofencryption, and deleting an equal number of consecutive messagesimmediately after encryption starts.Details can be found at https://terrapin-attack.com/For the stable distribution (bookworm), this problem has been fixed inversion 3.0.19-1+deb12u2.We recommend that you upgrade your php-phpseclib3 packages.For the detailed security status of php-phpseclib3 please refer toits security tracker page at:https://security-tracker.debian.org/tracker/php-phpseclib3Further information about Debian Security Advisories, how to applythese updates to your system and frequently asked questions can befound at: https://www.debian.org/security/Mailing list: debian-security-announce@lists.debian.org-----BEGIN PGP SIGNATURE-----iQEzBAEBCgAdFiEEAqSkbVtrXP4xJMh3EL6Jg/PVnWQFAmWg5QQACgkQEL6Jg/PVnWRUKwf/QGg/4t/cvkkj4MAEJs5GLxmT/UpIUdhEMjVtpVZk6k6m9K/OK3/3EXuTXYtNhIyByOiWpLt5kMBrG9I5tz6/ffErfiPYYJso7fWyAaWKopFp0qsYGe8FDq0aVSKo51b+SHPDtMxCxahTdkegaSCpjaEFiWZNd0/h4ZvS3ZNuOFQXcPor+mTIHqJTPkkpsMm9Qg7skmDrrlENLvDRgXn8HuJa0h2+vhNnSwfC/cTDKPICeOozB4qMWu4QYzlMSKC/mLJIVlqmVufQndnHLYlKLexusiCCckn/B/irOS5FRrOkXqfPmOtgpC9eDLhP7y/CkMhwhR6Ty/oOR/62zhhZpg==/Vah-----END PGP SIGNATURE-----

Debian Security Advisory 5601-1

Debian Linux Security Advisory 5600-1 - Fabian Baeumer, Marcus Brinkmann and Joerg Schwenk discovered that the SSH protocol is prone to a prefix truncation attack, known as the "Terrapin attack". This attack allows a MITM attacker to effect a limited break of the integrity of the early encrypted SSH transport protocol by sending extra messages prior to the commencement of encryption, and deleting an equal number of consecutive messages immediately after encryption starts.

    -----BEGIN PGP SIGNED MESSAGE-----Hash: SHA512- -------------------------------------------------------------------------Debian Security Advisory DSA-5600-1                   security@debian.orghttps://www.debian.org/security/                       Sebastien DelafondJanuary 12, 2024                      https://www.debian.org/security/faq- -------------------------------------------------------------------------Package        : php-phpseclibCVE ID         : CVE-2023-48795Fabian Baeumer, Marcus Brinkmann and Joerg Schwenk discovered that theSSH protocol is prone to a prefix truncation attack, known as the"Terrapin attack". This attack allows a MITM attacker to effect alimited break of the integrity of the early encrypted SSH transportprotocol by sending extra messages prior to the commencement ofencryption, and deleting an equal number of consecutive messagesimmediately after encryption starts.Details can be found at https://terrapin-attack.com/For the oldstable distribution (bullseye), this problem has been fixedin version 2.0.30-2+deb11u1.For the stable distribution (bookworm), this problem has been fixed inversion 2.0.42-1+deb12u1.We recommend that you upgrade your php-phpseclib packages.For the detailed security status of php-phpseclib please refer toits security tracker page at:https://security-tracker.debian.org/tracker/php-phpseclibFurther information about Debian Security Advisories, how to applythese updates to your system and frequently asked questions can befound at: https://www.debian.org/security/Mailing list: debian-security-announce@lists.debian.org-----BEGIN PGP SIGNATURE-----iQEzBAEBCgAdFiEEAqSkbVtrXP4xJMh3EL6Jg/PVnWQFAmWg5P4ACgkQEL6Jg/PVnWTO8Qf+MjlqXFJ0p865PgV30sQmWeJmc8UiX/lOO9ayLUZ13Dj4z74H40XxAz0MrHDnpfs3hvtgTkdRkE+k2FvrMgau+EpN1eGwgrHURHN/Kdz9Z6YLQX/T8LZq97SZVVu/X/+xkiZng0J+UXZx5BWQFf/vGz5vLiPA3JUSgS3KjwOYiZKIaSf+/7SF48heQTucpa7nC/7ew4dgLLNTa9PQWK8C616cJ6iZZaowi8k3QmUQGkyhuXS0EUHHRkxqEEf7HccwpwYbPAAkh5cIckEoXEC2gUkl2UmpzCFNdJl/xqz02xOfcgoDxM/1bYy2Bn3cNLe681fmEd7ShPdNTYtqz6YvwQ==ZVcV-----END PGP SIGNATURE-----

Debian Security Advisory 5600-1

Debian Linux Security Advisory 5599-1 - Fabian Baeumer, Marcus Brinkmann and Joerg Schwenk discovered that the SSH protocol is prone to a prefix truncation attack, known as the "Terrapin attack". This attack allows a MITM attacker to effect a limited break of the integrity of the early encrypted SSH transport protocol by sending extra messages prior to the commencement of encryption, and deleting an equal number of consecutive messages immediately after encryption starts.

    -----BEGIN PGP SIGNED MESSAGE-----Hash: SHA512- -------------------------------------------------------------------------Debian Security Advisory DSA-5599-1                   security@debian.orghttps://www.debian.org/security/                       Sebastien DelafondJanuary 12, 2024                      https://www.debian.org/security/faq- -------------------------------------------------------------------------Package        : phpseclibCVE ID         : CVE-2023-48795Fabian Baeumer, Marcus Brinkmann and Joerg Schwenk discovered that theSSH protocol is prone to a prefix truncation attack, known as the"Terrapin attack". This attack allows a MITM attacker to effect alimited break of the integrity of the early encrypted SSH transportprotocol by sending extra messages prior to the commencement ofencryption, and deleting an equal number of consecutive messagesimmediately after encryption starts.Details can be found at https://terrapin-attack.com/For the oldstable distribution (bullseye), this problem has been fixedin version 1.0.19-3+deb11u1.For the stable distribution (bookworm), this problem has been fixed inversion 1.0.20-1+deb12u1.We recommend that you upgrade your phpseclib packages.For the detailed security status of phpseclib please refer toits security tracker page at:https://security-tracker.debian.org/tracker/phpseclibFurther information about Debian Security Advisories, how to applythese updates to your system and frequently asked questions can befound at: https://www.debian.org/security/Mailing list: debian-security-announce@lists.debian.org-----BEGIN PGP SIGNATURE-----iQEzBAEBCgAdFiEEAqSkbVtrXP4xJMh3EL6Jg/PVnWQFAmWg5PMACgkQEL6Jg/PVnWS6iwgAgCFsThzoeNHG05PouaajhL6LvGsrj+cwed14VEnr0TGpChD6y2Z/deZXHW86VXSHRZvqNTt7+UQvKUwrmvbNRZL3TQoTp9l+VKtn3wT/0Q6Zf1jsn4G+yffXdredHf2pXgJh9poEy2DUTunVF+vpZdp9fS2QY8xp24kNbk8kk6itJeOGueWoFwrZp1B5q2hnQdFtM8mhbXDzViqbiu6zVZOmSXri1jShAKRDl0kpRQvfP1mKE+j5RMoJkBGFGuWnIXvxtwQEYDvobgKk5Ie0yzwqnD6m3WXMeS9x4Zi+HvV3hXvEu0UvvQXC1z8VX31cFffkLLDFpO3cE9dQlyABBA==Rz3N-----END PGP SIGNATURE-----

Debian Security Advisory 5599-1

Linux versions 4.20 and above have an issue where ktls writes into spliced readonly pages.

Linux 4.20 KTLS Read-Only Write

Linux suffers from an io_uring use-after-free vulnerability due to broken unix GC interaction.

Linux Broken Unix GC Interaction Use-After-Free

Debian Linux Security Advisory 5598-1 - A security issue was discovered in Chromium, which could result in the execution of arbitrary code, denial of service, or information disclosure.

    -----BEGIN PGP SIGNED MESSAGE-----Hash: SHA256- -------------------------------------------------------------------------Debian Security Advisory DSA-5598-1                   security@debian.orghttps://www.debian.org/security/                           Andres SalomonJanuary 10, 2024                      https://www.debian.org/security/faq- -------------------------------------------------------------------------Package        : chromiumCVE ID         : CVE-2024-0333A security issue was discovered in Chromium, which could resultin the execution of arbitrary code, denial of service, or informationdisclosure.For the oldstable distribution (bullseye), this problem has been fixedin version 120.0.6099.216-1~deb11u1. Note that chromium security supportfor the oldstable distribution is ending, and this is likely to be thelast release for it.For the stable distribution (bookworm), this problem has been fixed inversion 120.0.6099.216-1~deb12u1.We recommend that you upgrade your chromium packages.For the detailed security status of chromium please refer toits security tracker page at:https://security-tracker.debian.org/tracker/chromiumFurther information about Debian Security Advisories, how to applythese updates to your system and frequently asked questions can befound at: https://www.debian.org/security/Mailing list: debian-security-announce@lists.debian.org-----BEGIN PGP SIGNATURE-----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wTxO-----END PGP SIGNATURE-----

Tag

#linux