Security News > 2021 > August > August 2021 ICS Patch Tuesday: Siemens, Schneider Address Over 50 Flaws

August 2021 ICS Patch Tuesday: Siemens, Schneider Address Over 50 Flaws
2021-08-12 13:10

Siemens and Schneider Electric on Tuesday released 18 security advisories addressing a total of more than 50 vulnerabilities affecting their products.

Siemens has released 10 new advisories for the August 2021 Patch Tuesday and they cover a total of 32 vulnerabilities.

Another advisory from Siemens describes a couple of high-severity vulnerabilities in the ProFTPD component of its SIMATIC CP 1543-1 and CP 1545-1 devices.

A high severity rating has also been assigned to a missing authentication issue affecting the German industrial giant's SIMATIC S7-1200 PLCs. An attacker can exploit the flaw to bypass authentication and download arbitrary programs to the PLC. An advisory describing vulnerabilities in JT2Go and Teamcenter Visualization covers seven flaws that can be exploited for DoS attacks, information disclosure or remote code execution.

Advisories for these products usually address many CVEs as the flaws are similar, but they are triggered using different file formats.

Schneider Electric published eight new advisories on Tuesday covering a total of 25 vulnerabilities.


News URL

http://feedproxy.google.com/~r/securityweek/~3/ALotlrdN2Bk/august-2021-ics-patch-tuesday-siemens-schneider-address-over-50-flaws

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Siemens 2073 38 462 996 213 1709