SB2022111108 - Siemens SINEC update for logback
Published: November 11, 2022
Security Bulletin ID
SB2022111108
Severity
Medium
Patch available
YES
Number of vulnerabilities
1
Exploitation vector
Remote access
Highest impact
Code execution
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 security vulnerability.
1) Code Injection (CVE-ID: CVE-2021-42550)
The vulnerability allows a remote user to execute arbitrary code on the target system.
The vulnerability exists due to improper input validation. A remote user can send a specially crafted request to the application and execute arbitrary code on the target system by tricking the application to load a malicious configuration from a remote LDAP server.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
Remediation
Install update from vendor's website.
References
- https://ics-cert.us-cert.gov/advisories/icsa-22-314-03"
- https://ics-cert.us-cert.gov/advisories/icsa-22-314-03</a></p><p><a
- https://support.industry.siemens.com/cs/document/109813788/download-and-sales-delivery-release-for-sinec-nms-v1-0-sp3?lc=en-ww"
- https://support.industry.siemens.com/cs/document/109813788/download-and-sales-delivery-release-for-sinec-nms-v1-0-sp3?lc=en-ww</a></p><p>
- https://cert-portal.siemens.com/productcert/html/ssa-371761.html</p><p><br></p>