SSA-250085 V1.0: Multiple Vulnerabilities in SINEC NMS

March 8, 2022, midnight |

Siemens ProductCERT Security Advisories cert-portal.siemens.com

SINEC NMS contains multiple vulnerabilities that could allow an attacker to execute arbitrary code on the system, arbitrary commands on the local database or achieve privilege escalation.

Siemens recommends specific countermeasures for products where updates are not, or not yet available.

arbitrary code attacker code countermeasures database escalation local nms privilege privilege escalation products siemens sinec ssa system updates vulnerabilities

Visit resource

More from cert-portal.siemens.com / Siemens ProductCERT Security Advisories

SSA-750274 V1.0: Impact of CVE-2024-3400 on RUGGEDCOM APE1808 devices configured with Palo Alto Networks Virtual … 2 weeks ago | cert-portal.siemens.com

addresses advisory alto countermeasures +22

SSA-222019 V1.0: X_T File Parsing Vulnerabilities in Parasolid 3 weeks, 3 days ago | cert-portal.siemens.com

application applications attacker code +12

SSA-885980 V1.0: Multiple Vulnerabilities in Scalance W1750D 3 weeks, 3 days ago | cert-portal.siemens.com

attacker buffer buffer overflow code +16

SSA-822518 V1.0: Multiple Vulnerabilities in Palo Alto Networks Virtual NGFW before V11.0.1 on RUGGEDCOM APE1808 … 3 weeks, 3 days ago | cert-portal.siemens.com

advisory alto countermeasures customers +18

SSA-455250 V1.0: Multiple Vulnerabilities in Palo Alto Networks Virtual NGFW on RUGGEDCOM APE1808 devices 3 weeks, 3 days ago | cert-portal.siemens.com

advisory alto countermeasures customers +18

SSA-265688 V1.0: Vulnerabilities in the additional GNU/Linux subsystem of the SIMATIC S7-1500 TM MFP V1.1 3 weeks, 3 days ago | cert-portal.siemens.com

countermeasures fix fixes gnu +7

SSA-730482 V1.0: Denial of Service Vulnerability in SIMATIC WinCC 3 weeks, 3 days ago | cert-portal.siemens.com

attacker box denial of service dialog +14

SSA-556635 V1.0: Multiple Vulnerabilities in Telecontrol Server Basic before V3.1.2.0 3 weeks, 3 days ago | cert-portal.siemens.com

1.2.0 basic fixes server +4

SSA-128433 V1.0: Multiple Vulnerabilities in SINEC NMS before V2.0 SP2 3 weeks, 3 days ago | cert-portal.siemens.com

latest nms siemens sinec +4

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote

View on infosec-jobs.com

SITEC- Systems Security Administrator- Camp HM Smith

@ Peraton | Camp H.M. Smith, HI, United States

View on infosec-jobs.com

Cyberspace Intelligence Analyst

@ Peraton | Fort Meade, MD, United States

View on infosec-jobs.com

General Manager, Cybersecurity, Google Public Sector

@ Google | Virginia, USA; United States

View on infosec-jobs.com

Cyber Security Advisor

@ H&M Group | Stockholm, Sweden

View on infosec-jobs.com

Engineering Team Manager – Security Controls

@ H&M Group | Stockholm, Sweden

View on infosec-jobs.com

View more jobs

all InfoSec news

SSA-250085 V1.0: Multiple Vulnerabilities in SINEC NMS

More from cert-portal.siemens.com / Siemens ProductCERT Security Advisories

Jobs in InfoSec / Cybersecurity

Social Engineer For Reverse Engineering Exploit Study

SITEC- Systems Security Administrator- Camp HM Smith

Cyberspace Intelligence Analyst

General Manager, Cybersecurity, Google Public Sector

Cyber Security Advisor

Engineering Team Manager – Security Controls