Lucene search
K

4251 matches found

ics
ics
added 2014/02/15 7:0 a.m.52 views

Siemens RuggedCom ROX-based Devices Certificate Verification Vulnerability (Update A)

OVERVIEW This updated advisory is a follow-up to the original advisory titled ICSA-14-135-03 Siemens RuggedCom ROX-Based Devices Certificate Verification Vulnerability that was published May 15, 2014, on the NCCIC/ICS-CERT web site. Siemens has reported to ICS-CERT an incorrect certificate...

5.8CVSS6.8AI score0.29958EPSS
Exploits1References10
ics
ics
added 2014/02/15 7:0 a.m.228 views

Schneider Electric Wonderware Intelligence Security Patch for OpenSSL Vulnerability

OVERVIEW Schneider Electric Wonderware’s Cyber Security Team has identified an OpenSSL Heartbleed vulnerability in the Wonderware Intelligence application, caused by a third-party component. Schneider Electric Wonderware has produced a patch that mitigates this vulnerability. This vulnerability...

7.5CVSS8AI score0.99999EPSS
Exploits88References10
ics
ics
added 2014/02/13 7:0 a.m.53 views

Yokogawa Multiple Products Vulnerabilities

OVERVIEW Yokogawa reports that several buffer overflow vulnerabilities affect several of its products. Juan Vazquez of Rapid7 Inc.,Rapid7 Inc., http://www.rapid7.com, web site last accessed May 13, 2014. and independent researcher Julian Vilas Diaz reported to CERT/CC that they identified several...

9.3CVSS8AI score0.36035EPSS
Exploits6References10
ics
ics
added 2014/02/13 7:0 a.m.45 views

Emerson DeltaV Vulnerabilities

OVERVIEW This advisory was originally posted to the US-CERT secure Portal library on May 13, 2014, and is being released to the NCCIC/ICS-CERT web site. Emerson has identified two authorization vulnerabilities in the Emerson DeltaV application. These vulnerabilities were reported directly to...

6.2AI score
Exploits0References10
ics
ics
added 2014/02/08 7:0 a.m.115 views

Digi International OpenSSL Vulnerability

OVERVIEW Digi International has identified five products that are vulnerable to the OpenSSL Heartbleed bug. Digi International has produced downloadable firmware upgrade versions that mitigate this vulnerability. This vulnerability could be exploited remotely. Exploits that target this...

7.5CVSS8.1AI score0.99999EPSS
Exploits88References10
ics
ics
added 2014/02/06 7:0 a.m.485 views

ABB Relion 650 Series OpenSSL Vulnerability (Update A)

OVERVIEW --------- Begin Update A Part 1 of 2-------- This updated advisory is a follow-up to the original advisory titled ICSA-14-126-01 ABB Relion 650 Series OpenSSL Vulnerability, that was published May 06, 2014, on the NCCIC/ICS-CERT web site. ABB has identified an OpenSSL vulnerability in it...

7.5CVSS8.1AI score0.99999EPSS
Exploits88References10
ics
ics
added 2014/02/01 7:0 a.m.37 views

AMTELCO miSecure Vulnerabilities

OVERVIEW Researcher Jared Bird of Allina Health reported multiple vulnerabilities in the AMTELCO miSecureMessage MSM medical messaging system. AMTELCO has an update available to all customers that mitigates the vulnerabilities. The vulnerabilities were discovered during cooperative testing betwee...

7CVSS6.7AI score0.0242EPSS
Exploits0References10
ics
ics
added 2014/01/25 7:0 a.m.188 views

Certec atvise scada OpenSSL Heartbleed Vulnerability

OVERVIEW Researcher Bob Radvanovsky of Infracritical has notified NCCIC/ICS-CERT that Certec has released new libraries that mitigate the OpenSSL Heartbleed vulnerability in atvise scada. This vulnerability could be exploited remotely. Exploits that target the OpenSSL Heartbleed vulnerability are...

7.5CVSS7.9AI score0.99999EPSS
Exploits88References10
ics
ics
added 2014/01/25 7:0 a.m.52 views

Siemens SIMATIC S7-1200 CPU Web Vulnerabilities

OVERVIEW Siemens ProductCERT and Ralf Spenneberg, Hendrik Schwartke, and Maik Brüggemann from OpenSource Training have reported two vulnerabilities in the Siemens SIMATIC S7-1200 CPU family. Siemens has produced a new product release that mitigates these vulnerabilities. AFFECTED PRODUCTS The...

5.8CVSS6.1AI score0.2095EPSS
Exploits4References10
ics
ics
added 2014/01/20 12:0 p.m.11 views

Mariposa Botnet

Overview ICS-CERT has received reports and investigated infections of the MariposaDefence Intelligence, http://defintel.com/docs/MariposaAnalysis.pdf, website last accessed March 15, 2010. botnet, which have affected the business networks of multiple control system owners in recent months. ICS-CE...

7.3AI score
Exploits0References17
ics
ics
added 2014/01/18 7:0 a.m.37 views

Siemens SINEMA Vulnerabilities

OVERVIEW Siemens has identified vulnerabilities in SINEMA server. Siemens has produced a software update that mitigates these vulnerabilities. These vulnerabilities could be exploited remotely. AFFECTED PRODUCTS The following Siemens product is affected: SINEMA server: all versions prior to V12 S...

9.3CVSS7.8AI score0.04243EPSS
Exploits3References10
ics
ics
added 2014/01/18 7:0 a.m.54 views

InduSoft Web Studio Directory Traversal Vulnerability

OVERVIEW This advisory was originally posted to the US-CERT secure Portal library on April 17, 2014, and is now being released to the NCCIC/ICS-CERT web site. ICS-CERT received a report from the Zero Day Initiative ZDI concerning a Directory Traversal vulnerability affecting the InduSoft Web Stud...

9.8CVSS10AI score0.74548EPSS
Exploits5References10
ics
ics
added 2014/01/16 7:0 a.m.217 views

Siemens Industrial Products OpenSSL Heartbleed Vulnerability (Update B)

OVERVIEW This updated advisory is a follow-up to the updated advisory titled ICSA-14-105-03A Siemens Industrial Products OpenSSL Heartbleed Vulnerability that was published April 29, 2014, on the NCCIC/ICS-CERT web site. Siemens reported to ICS-CERT a list of products affected by the OpenSSL...

7.5CVSS8AI score0.99999EPSS
Exploits88References10
ics
ics
added 2014/01/16 7:0 a.m.111 views

Innominate mGuard OpenSSL HeartBleed Vulnerability

OVERVIEW Researcher Bob Radvanovsky of Infracritical has notified NCCIC/ICS-CERT that Innominate has released a new firmware version that mitigates the OpenSSL HeartBleed vulnerability in the mGuard products. --------- Begin Update A Part 1 of 4 -------- Phoenix Contact branded devices are not...

7.5CVSS7.8AI score0.99999EPSS
Exploits88References10
ics
ics
added 2014/01/16 7:0 a.m.28 views

Progea Movicon SCADA Information Disclosure Vulnerability

OVERVIEW Celil Ünüver of SignalSEC Ltd. has identified an information disclosure vulnerability in the Progea Movicon application. Progea has produced a new version that mitigates this vulnerability. The researcher has tested the new version to validate that it resolves the vulnerability. This...

5CVSS6.4AI score0.01319EPSS
Exploits0References10
ics
ics
added 2014/01/11 7:0 a.m.29 views

IOServer Out of Bounds Read Vulnerability

OVERVIEW Chris Sistrunk of Mandiant and Adam Crain of Automatak have identified an out of bounds read vulnerability in IOServer’s OPC Server application. IOServer has released a new version that mitigates this vulnerability. The researchers have tested the new version to validate that it resolves...

8.3CVSS6.3AI score0.02403EPSS
Exploits1References10
ics
ics
added 2014/01/09 7:0 a.m.51 views

Siemens Ruggedcom WIN Products BEAST Attack Vulnerability

OVERVIEW Siemens has identified a BEAST Browser Exploit Against SSL/TLS attack vulnerability in Siemens Ruggedcom WIN products. This vulnerability was originally reported directly to Siemens ProductCERT by Dan Frein and Paul Cotter of West Monroe Partners. Siemens has produced a firmware update...

4.3CVSS7.5AI score0.73327EPSS
Exploits4References10
ics
ics
added 2014/01/09 7:0 a.m.66 views

WellinTech KingSCADA Stack-Based Buffer Overflow

OVERVIEW An anonymous researcher working with HP’s Zero Day Initiative has identified a stack-based buffer overflow in the WellinTech KingSCADA Stack. WellinTech has produced a patch that mitigates this vulnerability. This vulnerability could be exploited remotely. AFFECTED PRODUCTS The following...

10CVSS7.5AI score0.1602EPSS
Exploits5References10
ics
ics
added 2014/01/09 7:0 a.m.56 views

OSIsoft PI Interface for DNP3 Improper Input Validation

OVERVIEW Adam Crain of Automatak and Chris Sistrunk, Sr. Consultant for Mandiant, have identified an improper input validation vulnerability in the OSIsoft PI Interface for DNP3 product. OSIsoft has produced an update that mitigates this vulnerability. OSIsoft and Automatak have tested the new...

4.7CVSS6.1AI score0.003EPSS
Exploits0References10
ics
ics
added 2014/01/08 12:0 p.m.238 views

USB Malware Targeting Siemens Control Software (Update C)

Overview VirusBlokAda, an antivirus vendor based in Belarus, announcedVirusBlokAda, http://www.anti-virus.by/en/tempo.shtml, website last visited July 15, 2010. the discovery of malware that uses a zero-day vulnerability in Microsoft Windows processing of shortcut files. The malware utilizes this...

9.3CVSS8AI score0.91324EPSS
Exploits13References24
ics
ics
added 2014/01/08 12:0 p.m.117 views

Stuxnet Malware Mitigation (Update B)

Overview In July, ICS-CERT published an advisory and a series of updates regarding the Stuxnet malware entitled “ICSA-10-201 USB Malware Targeting Siemens Control Software.” Since then, ICS-CERT has continued analysis of the Stuxnet malware in an effort to determine more about its capabilities an...

8.7AI score
Exploits0References22
ics
ics
added 2014/01/04 7:0 a.m.46 views

Schneider Electric OPC Factory Server Buffer Overflow

OVERVIEW Researcher Wei Gao, formerly of IXIA, has identified a buffer overflow vulnerability in the Schneider Electric OPC Factory Server OFS application. Schneider Electric has produced a patch that mitigates this vulnerability. Wei Gao has tested the patch to validate that it resolves the...

7.8CVSS6.7AI score0.02471EPSS
Exploits0References10
ics
ics
added 2014/01/02 12:0 p.m.36 views

Solar Magnetic Storm Impact on Control Systems

Overview The sun generates solar flare and coronal mass ejection CME events in an approximate 11-year cycle. The plasma clouds generated from these events have the potential to cause geomagnetic storms that can interfere with terrestrial communications and other electronic systems, posing a risk ...

6.8AI score
Exploits0References19
ics
ics
added 2014/01/02 7:0 a.m.38 views

Ecava IntegraXor Guest Account Information Disclosure Vulnerability

OVERVIEW This advisory was originally posted to the US-CERT secure Portal library on April 1, 2014, and is now being released to the NCCIC/ICS-CERT web site. Independent researcher Andrea Micalizzi, aka rgod, has identified an information disclosure vulnerability in the Ecava IntegraXor...

7.5CVSS6AI score0.0265EPSS
Exploits0References10
ics
ics
added 2013/12/27 7:0 a.m.118 views

Siemens CP 1604 and CP 1616 Improper Access Control

Overview This advisory provides mitigation details for a vulnerability that impacts the Siemens CP 1604 and CP 1616 communication modules. Siemens has identified a vulnerability in the debugging interface of the CP 1604 and CP 1616 communications modules. Independent researchers Christopher...

10CVSS7.8AI score0.0592EPSS
Exploits0References10
ics
ics
added 2013/12/22 7:0 a.m.69 views

Siemens WinCC 7.0 SP3 Multiple Vulnerabilities

Overview This advisory provides mitigation details for vulnerabilities that impact the Siemens SIMATIC WinCC. Positive Technologies and Siemens ProductCERT have identified multiple vulnerabilities in the Siemens SIMATIC WinCC, which is used to configure SIMATIC operator devices. Siemens has...

6.8CVSS8.6AI score0.03361EPSS
Exploits0References10
ics
ics
added 2013/12/22 7:0 a.m.55 views

Siemens WinCC TIA Portal Vulnerabilities

Overview This advisory provides mitigation details for a vulnerability that impacts the Siemens WinCC TIA Totally Integrated Automation Portal HMI. Researchers Billy Rios and Terry McCorkle of Cylance; Gleb Gritsai, Sergey Bobrov, Roman Ilin, Artem Chaykin, Timur Yunusov, and Ilya Karpov from...

4.6CVSS6.4AI score0.02328EPSS
Exploits0References10
ics
ics
added 2013/12/22 7:0 a.m.36 views

Schweitzer Engineering Laboratories AcSELerator Improper Authorization Vulnerability

Overview This advisory provides mitigation details for a vulnerability affecting the Schweitzer Engineering Laboratories SEL AcSELerator QuickSet software. Independent researcher Michael Toecker of Digital Bond has identified an improper authorization vulnerability in the SEL AcSELerator...

6.2CVSS6.2AI score0.01186EPSS
Exploits0References10
ics
ics
added 2013/12/20 7:0 a.m.28 views

Schneider Electric PLCs Vulnerabilities

OVERVIEW --------- Begin Update B Part 1 of 2 -------- This updated advisory is a follow-up to the previous advisory update titled ICSA-13-077-01A Schneider Electric PLCs Vulnerabilities Update A that was published March 20, 2013, on the ICS-CERT Web page. It is also a follow-up to the updated...

7.4AI score
Exploits0References10
ics
ics
added 2013/12/10 7:0 a.m.37 views

InduSoft Advantech Studio Directory Traversal

OVERVIEW This advisory is a follow-up to the alert titled ICS-ALERT-13-004-01—Advantech Studio Directory Traversal that was published January 4, 2013, on the ICS-CERT Web page. Independent researcher Nin3 released proof-of-concept PoC exploit code for a directory traversal vulnerability in Induso...

7.8CVSS6.5AI score0.03387EPSS
Exploits0References10
ics
ics
added 2013/12/10 7:0 a.m.46 views

Invensys Wonderware Win-XML Exporter Improper Input Validation Vulnerability

Overview This advisory was originally posted to the US-CERT secure Portal library on March 08, 2013, and is now being released to the ICS-CERT Web page. This advisory provides mitigation details for a vulnerability that impacts the Invensys Wonderware Win-XML Exporter. Researchers Timur Yunusov,...

9.3CVSS6.6AI score0.02078EPSS
Exploits0References10
ics
ics
added 2013/11/26 7:0 a.m.51 views

Emerson DeltaV Uncontroller Resource Consumption Vulnerability

Overview This advisory was originally posted to the US-CERT secure portal library on February 22, 2013, and is now being released to the ICS-CERT Web page. This advisory provides mitigation details for a vulnerability that impacts the Emerson DeltaV MD and SD controllers. Independent researcher...

6.1CVSS6.6AI score0.00865EPSS
Exploits0References10
ics
ics
added 2013/11/26 7:0 a.m.246 views

Honeywell EBI, SymmetrE, and ComfortPoint Open Manager Station

Overview This updated advisory is a follow-up to the original advisory titled ICSA-13-053-02--Honeywell Enterprise Buildings Integrator EBI, SymmetrE, and ComfortPoint Open Manager Station that was published February 22, 2013, on the ICS-CERT Web page. This advisory provides mitigation details fo...

6.8CVSS6.7AI score0.26639EPSS
Exploits9References10
ics
ics
added 2013/11/23 7:0 a.m.57 views

3S CODESYS Gateway-Server Vulnerabilities

Overview This updated advisory is a follow-up to the original advisory titled ICSA-13-050-01, 3S CODESYS Gateway-Server Vulnerabilities that was published February 19, 2013, on the ICS-CERT Web page. This updated advisory provides mitigation details for five vulnerabilities in the 3S-Smart Softwa...

10CVSS8.3AI score0.65668EPSS
Exploits13References10
ics
ics
added 2013/11/18 7:0 a.m.46 views

Tridium NiagaraAX Directory Traversal Vulnerability

Overview This advisory provides mitigation details for a vulnerability in the Tridium NiagaraAX software. Independent researchers Billy Rios and Terry McCorkle discovered a directory traversal vulnerability in the Tridium NiagaraAX software product. They demonstrated that with a valid user accoun...

9.3CVSS7.5AI score0.06367EPSS
Exploits0References10
ics
ics
added 2013/11/16 7:0 a.m.31 views

Schneider Electric Accutech Manager Heap Overflow

Overview This advisory provides mitigation details for a vulnerability that impacts the Schneider Electric Accutech Manager. Independent researcher Aaron Portnoy of Exodus Intelligence has identified a heap-based buffer overflow vulnerability in Schneider Electric’s Accutech Manager application...

10CVSS7.8AI score0.21527EPSS
Exploits0References10
ics
ics
added 2013/11/16 7:0 a.m.57 views

WellinTech KingView KingMess Buffer Overflow

Overview This updated advisory is a follow-up to the original advisory titled ICSA-13-043-02—WellinTech KingView KingMess Buffer Overflow that was published February 12, 2013, on the ICS-CERT Web page. This updated advisory provides mitigation details for a vulnerability that impacts the WellinTe...

10CVSS7.5AI score0.61492EPSS
Exploits8References10
ics
ics
added 2013/11/15 7:0 a.m.46 views

MOXA EDR-G903 Series Multiple Vulnerabilities

OVERVIEW This advisory provides mitigation details for vulnerabilities that impact Moxa EDR-G903 Series Routers. Independent researcher Neil Smith identified a hard-coded user account vulnerability and an insufficient entropy vulnerability in Moxa’s EDR-G903 series routers. By impersonating the...

7.6CVSS7AI score0.01103EPSS
Exploits0References10
ics
ics
added 2013/11/11 7:0 a.m.57 views

360 Systems Image Server 2000 Series Remote Root Access

Overview This updated advisory is a follow-up to the original advisory titled ICSA-13-038-01—360 Systems Image Server 2000 Series Remote Root Access that was published March 06, 2013, on the ICS-CERT Web site. This advisory provides mitigation details for a vulnerability that impacts the 360...

10CVSS6.6AI score0.03799EPSS
Exploits0References10
ics
ics
added 2013/11/09 7:0 a.m.33 views

Ecava IntegraXor ActiveX Buffer Overflow

Overview This advisory provides mitigation details for a vulnerability that impacts the Ecava IntegraXor application. Independent researcher Andrew Brooks has identified a buffer overflow vulnerability in Ecava’s IntegraXor application. Ecava has produced a patch that mitigates this vulnerability...

9.3CVSS8AI score0.03769EPSS
Exploits0References10
ics
ics
added 2013/10/28 12:0 p.m.18 views

InduSoft ISSymbol ActiveX Control Buffer Overflow (Update A)

Overview Security researcher Dmitriy Pletnevo of Secunia ResearchSecunia Research, http://secunia.com/secuniaresearch/2011-36/, website last accessed June 16, 2011. has released details of multiple overflow vulnerabilities affecting the InduSoft ISSymbol ActiveX control. The researcher identified...

8.8AI score
Exploits0References18
ics
ics
added 2013/10/26 6:0 a.m.68 views

GE Intelligent Platforms Proficy Cimplicity Multiple Vulnerabilities

Overview This advisory provides mitigation details for multiple vulnerabilities that impact GE Intelligent Platforms Proficy HMI/SCADA—CIMPLICITY. General Electric GE has addressed two vulnerabilities in GE Intelligent Platforms Proficy HMI/SCADA—CIMPLICITY: a directory transversal vulnerability...

9.3CVSS7.3AI score0.19111EPSS
Exploits3References10
ics
ics
added 2013/10/26 6:0 a.m.62 views

GE Proficy Real-Time Information Portal Information Disclosure Vulnerabilities

Overview This advisory provides mitigation details for multiple vulnerabilities that impact the GE Intelligent Platforms Proficy Real-Time Information Portal. General Electric GE has addressed two vulnerabilities in the GE Intelligent Platforms Proficy Real-Time Information Portal. Exploitation o...

5CVSS6.5AI score0.01955EPSS
Exploits0References10
ics
ics
added 2013/10/22 6:0 a.m.39 views

Schneider Electric IGSS Buffer Overflow

Overview Independent researcher Aaron Portnoy of Exodus Intelligence has identified a buffer overflow vulnerability in Schneider Electric’s Interactive Graphical SCADA System IGSS application. Schneider Electric has produced a patch that fully resolves this vulnerability. Aaron Portnoy has...

10CVSS6.8AI score0.21262EPSS
Exploits8References10
ics
ics
added 2013/10/20 6:0 a.m.47 views

Schneider Electric Authenticated Communication Risk Vulnerability

OVERVIEW ICS-CERT received a report from Schneider Electric concerning an Authenticated Communication Risk vulnerability in the Schneider Electric Software Update SESU utility. This vulnerability was reported to Schneider Electric by security researcher Arthur Gervais. The SESU is a centralized...

9.3CVSS7.3AI score0.02906EPSS
Exploits0References10
ics
ics
added 2013/10/18 6:0 a.m.41 views

Siemens SIMATIC RF Manager ActiveX Buffer Overflow

Overview This advisory provides mitigation details for a vulnerability that impacts the Siemens SIMATIC RF Manager. Siemens has identified a buffer overflow vulnerability in the ActiveX component of the SIMATIC RF Manager. Siemens has produced a patch that mitigates this vulnerability. Successful...

6.8CVSS8.6AI score0.02676EPSS
Exploits0References10
ics
ics
added 2013/10/15 6:0 a.m.190 views

Rockwell Automation ControlLogix PLC Vulnerabilities

Overview This advisory is a follow up to the original alert titled ICS-ALERT-12-020-02A—Rockwell Automation ControlLogix PLC Vulnerabilities that was published February 14, 2012, on the ICS-CERT Web page. Independent researcher Rubén Santamarta of IOActive identified vulnerabilities in Rockwell...

10CVSS7.6AI score0.54168EPSS
Exploits0References10
ics
ics
added 2013/10/15 6:0 a.m.31 views

SpecView Directory Traversal

Overview This advisory is a follow up to the original alert titled ICS-ALERT-12-214-01 SpecView Directory Traversal that was published August 01, 2012, on the ICS-CERT Web. This advisory provides mitigation details for a vulnerability, which impacts SpecView products. Independent researcher Luigi...

5CVSS6.5AI score0.04813EPSS
Exploits1References10
ics
ics
added 2013/09/20 6:0 a.m.32 views

NovaTech Orion DNP3 Improper Input Validation Vulnerability

OVERVIEW Adam Crain of Automatak and independent researcher Chris Sistrunk have identified an improper input validation vulnerability in the NovaTech Orion Substation Automation Platform. NovaTech has produced a firmware update that mitigates this vulnerability. The researchers have tested the...

7.1CVSS6.4AI score0.01255EPSS
Exploits0References10
ics
ics
added 2013/09/18 6:0 a.m.60 views

Schneider Electric CitectSCADA Products Exception Handler Vulnerability (Update A)

OVERVIEW --------- Begin Update A Part 1 of 1 -------- This updated advisory is a follow-up to the original advisory titled ICSA-13-350-01 Schneider Electric SCADA Products Exception Handler Vulnerability that was published February 25, 2014, on the NCCIC/ICS-CERT web site. This advisory was...

7.8CVSS6.5AI score0.01786EPSS
Exploits1References10
Total number of security vulnerabilities4251