Rewterz Threat Advisory – ICS: Multiple Siemens SIMATIC Vulnerabilities

February 11, 2022

Rewterz Threat Advisory – ICS: Multiple Siemens Product Vulnerabilities

February 11, 2022

Rewterz Threat Advisory – CVE-2022-0435 – Linux Kernel Vulnerability

February 11, 2022

Severity

High

Analysis Summary

CVE-2022-0435

Linux Kernel is vulnerable to a stack-based buffer overflow, caused by improper bounds checking by the Transparent Inter Process Communication (TIPC) module. By sending a specially-crafted domain record containing an arbitrary payload, a remote attacker could overflow a buffer and execute arbitrary code or cause a denial of service condition on the system.

Impact

Buffer Overflow

Indicators of Compromise

CVE

CVE-2022-0435

Affected Vendors

Linux

Affected Products

Linux Kernel 4.9
Linux Kernel 4.10
Linux Kernel 4.8.0
Linux Kernel 4.11

Remediation

Refer to Linux Kernel GIT Repository for patch, upgrade or suggested workaround information

https://github.com/torvalds/linux/commit/9aa422ad326634b76309e8ff342c246800621216

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

GitHub Tools Deployed in CrazyHunter Ransomware Campaigns – Active IOCs

North Korean APT Kimsuky aka Black Banshee – Active IOCs

Sophisticated BPFDoor Malware Detected Targeting Linux Systems – Active IOCs

Threat Insights

About Us

Our Leadership

CSR

Connect with Us

Rewterz Threat Advisory – ICS: Multiple Siemens SIMATIC Vulnerabilities

Rewterz Threat Advisory – ICS: Multiple Siemens Product Vulnerabilities

The Wait Is Over!

The Rewterz Annual Threat Intelligence Report 2024 is finally here.