Rewterz Threat Advisory – ICS: Schneider Electric APC Easy UPS On-Line
August 12, 2020Rewterz Threat Advisory – CVE-2020-7583 – ICS: Siemens Automation License Manager
August 12, 2020Rewterz Threat Advisory – ICS: Schneider Electric APC Easy UPS On-Line
August 12, 2020Rewterz Threat Advisory – CVE-2020-7583 – ICS: Siemens Automation License Manager
August 12, 2020Severity
High
Analysis Summary
The version of pppd shipped with this product has a vulnerability that may allow an unauthenticated remote attacker to cause a stack buffer overflow, which may allow arbitrary code execution on the target system.
Impact
Arbitrary code execution
Affected Vendors
Siemens
Affected Products
- RUGGEDCOM RM1224: All versions prior to 6.3
- SCALANCE M-800 / S615: All versions prior to 6.3
Remediation
Siemens recommends applying the following updates: