原文

新規：8件SSA-019200: Multiple Vulnerabilities in SCALANCE W-700 IEEE 802.11n Devices Before V6.6.0SSA-225816: Memory Corruption Vulnerability in RUGGEDCOM CROSSBOW Station Access Controller Before V5.8SSA-605717: Authorization Bypass Vulnerability in SINEC NMS Before V4.0 SP3SSA-609469: Authorization Bypass Vulnerability in Industrial Edge ManagementSSA-628843: Out of Bound Read Vulnerability in TPM 2.0SSA-741509: Privilege Escalation Vulnerability in RUGGEDCOM CROSSBOW Secure Access Manager Primary Before V5.8SSA-801704: Authentication Bypass Vulnerability in SINEC NMSSSA-981622: Improper Certificate Validation Vulnerability in Siemens Analytics Toolkit更新：13件SSA-186293: XML External Entity (XXE) Injection Vulnerability in SIMOTION SCOUT, SIMOTION SCOUT TIA and SINAMICS STARTERSSA-216014: Vulnerabilities in EFI variable of SIMATIC IPCs, SIMATIC Tablet PCs, and SIMATIC Field PGsSSA-244969: OpenSSL Vulnerability in Industrial ProductsSSA-311973: Multiple Local Privilege Escalation Vulnerabilities in SINEC NMS and User Management Component (UMC)SSA-408105: Buffer Overflow Vulnerabilities in OpenSSL 3.0 Affecting Siemens ProductsSSA-552702: Privilege Escalation Vulnerability in the Web Interface of SCALANCE and RUGGEDCOM ProductsSSA-599968: Denial of Service Vulnerability in Profinet DevicesSSA-710008: Multiple Web Vulnerabilities in SCALANCE ProductsSSA-712929: Denial of Service Vulnerability in OpenSSL (CVE-2022-0778) Affecting Industrial ProductsSSA-726617: Incorrect Privilege Assignment Vulnerability in Mendix OIDC SSO ModuleSSA-726834: Denial of Service Vulnerability in the RADIUS Client of SIPROTEC 5 DevicesSSA-827968: Vulnerability in Nozomi Guardian/CMC on RUGGEDCOM APE1808 DevicesSSA-913875: Frame Aggregation and Fragmentation Vulnerabilities in 802.11