Rewterz Threat Advisory – ICS: Siemens SINAMICS (Update A) Multiple Vulnerabilities

Rewterz Threat Alert – Double Loaded Zip File Delivers Nanocore

November 13, 2019

Rewterz Threat Advisory – CVE-2019-3648 – McAfee Patches Privilege Escalation Flaw in Antivirus Software

November 13, 2019

Rewterz Threat Advisory – ICS: Siemens SINAMICS (Update A) Multiple Vulnerabilities

Severity

Medium

Analysis Summary

This updated advisory is a follow-up to the original advisory titled ICSA-19-227-04 Siemens SINAMICS

CVE-2019-6568

The webserver of the affected devices contains a vulnerability that may lead to a denial-of-service condition. An attacker may cause a denial-of-service situation, leading to a restart of the webserver of the affected device. The security vulnerability could be exploited by an attacker with network access to the affected systems. Successful exploitation requires no system privileges and no user interaction.

Impact

Uncontrolled Resource Consumption
Denial of service

Affected Vendors

Siemens

Affected Products

SINAMICS

Remediation

Please see ICS advisory (ICSA-19-227-04) for the list of affected products and details.

https://www.us-cert.gov/ics/advisories/icsa-19-227-04

Rewterz Threat Alert – Double Loaded Zip File Delivers Nanocore

Rewterz Threat Advisory – CVE-2019-3648 – McAfee Patches Privilege Escalation Flaw in Antivirus Software

Rewterz Threat Advisory – ICS: Siemens SINAMICS (Update A) Multiple Vulnerabilities

Severity

Analysis Summary

Impact

Affected Vendors

Affected Products

Remediation

Security Operations Centers across the region

Saudi Arabia

UAE

Oman

Pakistan