Rewterz Threat Alert – Lazarus APT Group – Active IOCs
April 18, 2022Rewterz Threat Advisory – ICS: Siemens SIMATIC Energy Manager Basic and SIMATIC Energy Manager PRO Vulnerabilities
April 18, 2022Rewterz Threat Alert – Lazarus APT Group – Active IOCs
April 18, 2022Rewterz Threat Advisory – ICS: Siemens SIMATIC Energy Manager Basic and SIMATIC Energy Manager PRO Vulnerabilities
April 18, 2022Severity
High
Analysis Summary
CVE-2022-1331
In four instances the affected product does not properly restrict references of XML external entities while processing specific project files, which may allow unauthorized information disclosure.
Impact
- Information Disclosure
Indicators Of Compromise
CVE
- CVE-2022-1331
Affected Vendors
- Delta Electronics
Affected Products
- All versions prior to v2.1.10.24
Remediation
Refer to CISA-CERT Advisory for the patch, upgrade, or suggested workaround information.