8 matches found
EUVD-2018-16625
Malware in sbrugna...
Logic Flaw Vulnerability in Widefield3
Widefield3, also known as Yokogawa PLC Programming Software, is a versatile PLC programming tool. Widefield3 suffers from a logic flaw vulnerability that can be exploited by an attacker to reconstruct the protection password of a program block or macro program...
CVE-2018-13811
A vulnerability has been identified in SIMATIC STEP 7 TIA Portal All Versions V15.1. Password hashes with insufficient computational effort could allow an attacker to access to a project file and reconstruct passwords. The vulnerability could be exploited by an attacker with local access to the...
Unspecified Vulnerability in Multiple Siemens Products
Siemens DIGSI etc. are products of Siemens, Germany.Siemens DIGSI is a configuration and operation software for microcomputer protection devices.EN100 Ethernet module IEC 61850 variant is an Ethernet module product. A security vulnerability exists in several Siemens products. An attacker could...
CVE-2018-4839
A vulnerability has been identified in DIGSI 4 All versions V4.92, EN100 Ethernet module DNP3 variant All versions V1.05.00, EN100 Ethernet module IEC 104 variant All versions, EN100 Ethernet module IEC 61850 variant All versions V4.30, EN100 Ethernet module Modbus TCP variant All versions, EN100...
Siemens Patches Password Reconstruction Vulnerability in SICAM PAS
The Industrial Control Systems Cyber Emergency Response Team ICS-CERT cautioned users who work in electrical substations to update certain builds of energy automation software this week. ICS-CERT claims two vulnerabilities exist in the Siemens SICAM Power Automation System, or PAS, that could...
Siemens SICAM PAS Information Disclosure Vulnerability
SICAM PAS is an energy automation solution for the operation of substation equipment. It has open communication interfaces for power system control and control of industrial power supply equipment. An information disclosure vulnerability exists in Siemens SICAM PAS. An attacker with privileged...
Siemens SIMATIC STEP 7 TIA Portal Vulnerabilities (Update A)
OVERVIEW This updated advisory is a follow-up to the original advisory titled ICSA-15-050-01 Siemens SIMATIC STEP 7 TIA Portal Vulnerabilities that was published February 19, 2015, on the NCCIC/ICS-CERT web site. Siemens has identified two vulnerabilities in its SIMATIC STEP 7 TIA Portal. Siemens...