Vulnerabilities

ICS Patch Tuesday: Siemens, Schneider Electric Address Over 40 Vulnerabilities

Issued by: Security Week

Source
Advertisement


Siemens

Siemens has released 21 new advisories and updated 25 previously published advisories. The new advisories cover 36 vulnerabilities, including five that have been assigned a critical severity rating.

One of the critical flaws, with a CVSS score of 10, impacts the Desigo CC building management platform and the Cerberus danger management station (DMS). The flaw, a deserialization issue, can allow an unauthenticated attacker to execute arbitrary code on the affected system. Siemens pointed out that the risk of exploitation is higher for systems connected directly to the internet.

Read more
You might also like
Vulnerabilities

A third of all vulnerabilities in 2019 had a CVSS v2 score of 7.0 and above

Vulnerabilities

Barracuda Email Security Gateway (ESG) hacked via zero-day bug

Vulnerabilities

There May be A Ceiling on Vulnerability Remediation

Vulnerabilities

21 Vulnerabilities Discovered in Crucial IT-OT Connective Routers

Advertisement