all InfoSec news
SSA-244969 V1.9 (Last Update: 2023-03-14): OpenSSL Vulnerability in Industrial Products
Siemens ProductCERT Security Advisories cert-portal.siemens.com
OpenSSL has published a security advisory [0] about a vulnerability in OpenSSL versions 1.1.1 < 1.1.1l and 1.0.2 < 1.0.2za that allows an attacker to cause a denial of service (DoS) or to disclose private memory content.
Siemens has released updates for several affected products and recommends to update to the latest versions. Siemens is preparing further updates and recommends countermeasures for products where updates are not, or not yet available.
[0] https://www.openssl.org/news/secadv/20210824.txt
1.0.2 1.1.1 advisory attacker denial of service dos industrial memory openssl openssl vulnerability private products security security advisory service siemens ssa update updates vulnerability