CISA Releases Six Industrial Control Systems Advisories

CISA released six Industrial Control Systems ICS Advisories. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-322-01 Schneider Electric EcoStruxure Machine SCADA Expert & Pro-face BLUE Open Studio ICSA-25-322-02 Shel...

EUVD-2020-20705

Malware in sbrugna...

EUVD-2022-44856

Malicious code in bioql PyPI...

EUVD-2022-44855

Malicious code in bioql PyPI...

EUVD-2022-44854

Malicious code in bioql PyPI...

EUVD-2022-44858

Malicious code in bioql PyPI...

CVE-2022-41668

A CWE-704: Incorrect Project Conversion vulnerability exists that allows adversaries with local user privileges to load a project file from an adversary-controlled network share which could result in execution of malicious code. Affected Products: EcoStruxure Operator Terminal ExpertV3.3 Hotfix 1...

CVE-2022-41666

A CWE-347: Improper Verification of Cryptographic Signature vulnerability exists that allows adversaries with local user privileges to load a malicious DLL which could lead to execution of malicious code. Affected Products: EcoStruxure Operator Terminal ExpertV3.3 Hotfix 1 or prior, Pro-face...

CVE-2022-41671

A CWE-89: Improper Neutralization of Special Elements used in SQL Command ‘SQL Injection’ vulnerability exists that allows adversaries with local user privileges to craft a malicious SQL query and execute as part of project migration which could result in execution of malicious code. Affected...

CVE-2022-41667

A CWE-22: Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability exists that allows adversaries with local user privileges to load a malicious DLL which could lead to execution of malicious code. Affected Products: EcoStruxure Operator Terminal ExpertV3.3 Hotfi...

CVE-2022-41669

A CWE-347: Improper Verification of Cryptographic Signature vulnerability exists in the SGIUtility component that allows adversaries with local user privileges to load a malicious DLL which could result in execution of malicious code. Affected Products: EcoStruxure Operator Terminal ExpertV3.3...

The vulnerability of the software for configuring Schneider Electric EcoStruxure Operator Terminal Expert HMI terminals and the SCADA Pro-face BLUE software allows a perpetrator to execute arbitrary codes.

The vulnerability of Schneider Electric EcoStruxure Operator Terminal Expert HMI configuration software and SCADA Pro-face BLUE software is related to the possibility of code injection. Exploiting this vulnerability allows a perpetrator to execute arbitrary code by loading a specially crafted...

PT-2023-3117 · Pro Face +1 · Pro-Face Blue +1

Name of the Vulnerable Software and Affected Versions: Schneider Electric EcoStruxure Operator Terminal Expert affected versions not specified Pro-face BLUE affected versions not specified Description: A code injection vulnerability exists, potentially allowing the execution of malicious code whe...

The vulnerability of the software for configuring Schneider Electric EcoStruxure Operator Terminal Expert HMI terminals and the SCADA Pro-face BLUE software lies in the improper verification of the cryptographic signature. This allows a perpetrator to execute arbitrary codes.

The vulnerability of the software for configuring Schneider Electric EcoStruxure Operator Terminal Expert and the SCADA Pro-face BLUE software is related to improper verification of the cryptographic signature. Exploiting this vulnerability allows a perpetrator to execute arbitrary code by loadin...

The vulnerability of the software for configuring Schneider Electric EcoStruxure Operator Terminal Expert HMI terminals and the SCADA Pro-face BLUE software lies in the lack of security measures taken to protect the SQL query structure, allowing a hacker to execute arbitrary code.

The vulnerability of the software for configuring Schneider Electric EcoStruxure Operator Terminal Expert HMI terminals and the SCADA Pro-face BLUE software is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability could allow an attacker to execute...

The vulnerability of the SGIUtility component in the HMI terminal configuration software for Schneider Electric EcoStruxure Operator Terminal Expert and the SCADA Pro-face BLUE software allows a malicious individual to execute arbitrary code.

The vulnerability of the SGIUtility component in Schneider Electric’s HMI terminal configuration software, as well as in the SCADA Pro-face BLUE software, is related to improper handling of a path leading to a limited catalog. Exploiting this vulnerability could allow an attacker to execute...

The vulnerability of the software for configuring Schneider Electric EcoStruxure Operator Terminal Expert HMI terminals and the SCADA Pro-face BLUE software allows a perpetrator to execute arbitrary codes.

The vulnerability of the software for configuring Schneider Electric EcoStruxure Operator Terminal Expert and the SCADA Pro-face BLUE software is related to improper bypassing of a limited catalog. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

The vulnerability of the software for configuring Schneider Electric EcoStruxure Operator Terminal Expert HMI terminals and the SCADA Pro-face BLUE software allows a perpetrator to execute arbitrary codes.

The vulnerability of the software for configuring Schneider Electric EcoStruxure Operator Terminal Expert HMI terminals and the SCADA Pro-face BLUE software is related to improper project conversion. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

The vulnerabilities of the software products for developing HMI/SCADA systems such as EcoStruxure Machine SCADA Expert and Pro-face BLUE Open Studio allow attackers to execute arbitrary code.

The vulnerability of the software products for developing HMI/SCADA systems such as EcoStruxure Machine SCADA Expert and Pro-face BLUE Open Studio is related to deficiencies in the deserialization mechanism. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

The vulnerability of the SGIUtility component in the HMI terminal configuration software for Schneider Electric EcoStruxure Operator Terminal Expert and the SCADA Pro-face BLUE software allows a malicious individual to execute arbitrary code.

The vulnerability of the SGIUtility component in Schneider Electric’s HMI terminal configuration software, as well as in the SCADA Pro-face BLUE software, is related to improper verification of the cryptographic signature. Exploiting this vulnerability could allow an attacker to execute arbitrary...