Rewterz Threat Advisory – ICS – Siemens SINEMA Vulnerability

Rewterz Threat Alert – APT32 Ocean Lotus – IOCs

August 22, 2021

Rewterz Threat Alert –GandCrab Ransomware – Active IOCs

August 22, 2021

Rewterz Threat Advisory – ICS – Siemens SINEMA Vulnerability

Severity

High

Analysis Summary

CVE-2021-31338

Siemens SINEMA Remote Connect Client could allow a locally authenticated attacker to gain elevated privileges on the system, caused by allowing modify configuration settings over an unauthenticated channel. An attacker could exploit this vulnerability to escalate privileges and execute arbitrary code on the device.

Impact

Unauthorized Access

Affected Vendors

Siemens

Affected Products

Siemens Sinema Remote Connect Client 3.0

Remediation

Refer to Siemens Security Advisory for the patch, upgrade, or suggested workaround information

https://cert-portal.siemens.com/productcert/pdf/ssa-816035.pdf

Rewterz Threat Alert – APT32 Ocean Lotus – IOCs

Rewterz Threat Alert –GandCrab Ransomware – Active IOCs

Rewterz Threat Advisory – ICS – Siemens SINEMA Vulnerability

Severity

Analysis Summary

CVE-2021-31338

Impact

Affected Vendors

Affected Products

Remediation

Security Operations Centers across the region

Saudi Arabia

UAE

Oman

Pakistan