all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

SSA-280603 V1.0: Denial of Service Vulnerability in SINUMERIK ONE and SINUMERIK MC

Add to bookmarks
Dec. 12, 2023, midnight |

Siemens ProductCERT Security Advisories cert-portal.siemens.com

A vulnerability has been identified in the integrated S7-1500 CPU of SINUMERIK ONE and SINUMERIK MC products that could allow an attacker to cause a denial of service condition. In order to exploit the vulnerability, an attacker must have access to the affected devices on port 102/tcp.


Siemens is preparing updates and recommends specific countermeasures for products where updates are not, or not yet available.


Note: The affected integrated S7-1500 CPUs and related products are advised in [1].


[1] https://cert-portal.siemens.com/productcert/html/ssa-592380.html

access attacker cpu denial of service devices exploit order port products service siemens ssa tcp vulnerability

Visit resource

More from cert-portal.siemens.com / Siemens ProductCERT Security Advisories

SSA-923361 V1.0: MODEL File Parsing Vulnerability in Tecnomatix Plant Simulation before V2302.0011 6 days, 12 hours ago | cert-portal.siemens.com
application arbitrary code arbitrary code execution code +9
SSA-871704 V1.0: Multiple Vulnerabilities in SICAM Products 6 days, 12 hours ago | cert-portal.siemens.com
code code execution device escalation +14
SSA-925850 V1.0: Improper Access Control in Polarion ALM 6 days, 12 hours ago | cert-portal.siemens.com
access access control access controls apache +11
SSA-976324 V1.0: Multiple IGS File Parsing Vulnerabilities in PS/IGES Parasolid Translator Component before V27.1.215 6 days, 12 hours ago | cert-portal.siemens.com
application crash file files +6
SSA-953710 V1.0: Vulnerabilities in the Network Communication Stack in Desigo Fire Safety UL and Cerberus … 6 days, 12 hours ago | cert-portal.siemens.com
access attacker buffer buffer overflow +17
SSA-916916 V1.0: Security Vulnerabilities Fixed in RUGGEDCOM CROSSBOW V5.5 6 days, 12 hours ago | cert-portal.siemens.com
application arbitrary files attacker attacks +18
SSA-935500 V1.1 (Last Update: 2024-05-14): Denial of Service Vulnerability in FTP Server of Nucleus RTOS … 6 days, 12 hours ago | cert-portal.siemens.com
countermeasures fix fixes latest +6
SSA-962515 V1.0: Out of Bounds Read Vulnerability in Industrial Products 6 days, 12 hours ago | cert-portal.siemens.com
attacker blue bsod crash +13
SSA-661579 V1.0: Multiple File Parsing Vulnerabilities in Teamcenter Visualization and JT2Go 6 days, 12 hours ago | cert-portal.siemens.com
application crash file files +7

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Technology Security Analyst

@ Halton Region | Oakville, Ontario, Canada
View on infosec-jobs.com

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA
View on infosec-jobs.com

Information Technology Security Engineer

@ Plexus Worldwide | Scottsdale, Arizona, United States
View on infosec-jobs.com

Principal Email Security Researcher (Cortex XDR)

@ Palo Alto Networks | Tel Aviv-Yafo, Israel
View on infosec-jobs.com

Lead Security Engineer - Cloud Security, AWS

@ JPMorgan Chase & Co. | Bengaluru, Karnataka, India
View on infosec-jobs.com