all InfoSec news
SSA-617233 V1.0: Urgent/11 TCP/IP Stack Vulnerabilities in SIPROTEC 4 7SJ66 Devices
Siemens ProductCERT Security Advisories cert-portal.siemens.com
SIPROTEC 4 7SJ66 devices are affected by multiple security vulnerabilities due to the underlying Wind River VxWorks network stack. This stack is affected by nine of the eleven vulnerabilities that are also known as “URGENT/11”.
The vulnerabilities could allow an attacker to execute a variety of exploits for the purpose of denial of service (DoS), data extraction, remote code execution, etc. targeting availability, integrity and confidentiality of the devices and data.
Siemens has released a new version for SIPROTEC 4 …
attacker devices exploits ip stack network river security ssa stack tcp urgent vulnerabilities vxworks wind wind river