Advisories

KLCERT-20-002: XXE on Moxa’s cellular management software OnCell Central Manager Version lower than 2.4.1

16 March 2020

Moxa’s cellular management software OnCell Central Manager Version lower than 2.4.1 was affected to XML Externl Entity (XXE) due to vulnerable third-party component usage (Apache Flex BlazeDS). Successful exploitation of this vulnerability could allow an attacker to execute arbitrary code.
KLCERT-20-001: Remote Code Execution on Moxa’s cellular management software OnCell Central Manager Version lower than 2.4.1

16 March 2020

Moxa’s cellular management software OnCell Central Manager Version lower than 2.4.1 was affected to Remote Code Execution due to vulnerable third-party component usage (Apache Flex BlazeDS). Successful exploitation of this vulnerability could allow an attacker to execute arbitrary code.
KLCERT-19-032: Denial of Service in RDesktop before 1.8.4

30 October 2019

RDesktop version 1.8.4 contains multiple out-of-bound access read vulnerabilities in its code, which results in a denial of service (DoS) condition. This attack appear to be exploitable via network connectivity. These issues have been fixed in version 1.8.5.
KLCERT-19-031: CODESYS V3 Password transmission vulnerability

13 August 2019

Attacker able to decrypt captured credentials.
KLCERT-19-030: Hasplm cookie without HTTPOnly attribute

05 June 2019

Hasplm cookie does not have a HTTPOnly attribute. This allows malicious javascript to steal these cookie.
KLCERT-19-029: Gemalto Admin Control Center uses cleartext communication with www3.safenet-inc.com

05 June 2019

Gemalto Admin Control Center, all versions prior to 7.92, uses cleartext HTTP to communicate with www3.safenet-inc.com to obtain language packs.
KLCERT-19-027: Remote Code Execution Vulnerability in Siemens SIMATIC WinCC and SIMATIC PCS 7

16 May 2019

An attacker with network access to affected installations, which are configured without “Encrypted Communication”, can execute arbitrary code. The security vulnerability could be exploited by an unauthenticated attacker with network access to the affected installation. No user interaction is required to exploit this security vulnerability. The vulnerability impacts confidentiality, integrity, and availability of the device.
KLCERT-19-026: Siemens WinCC local denial of service

16 May 2019

An attacker with local access to the project file could cause a Denial-of-Service condition on the affected product while the project file is loaded. Successful exploitation requires access to the project file. An attacker could use the vulnerability to compromise availability of the affected system.
KLCERT-19-025: Siemens SIMATIC WinCC and SIMATIC PCS 7 remote code execution using specially crafted project files

16 May 2019

An attacker with access to the project file could run arbitrary system commands with the privileges of the local database server. The vulnerability could be exploited by an attacker with access to the project file. The vulnerability does impact the confidentiality, integrity, and availability of the affected system.
KLCERT-19-024: UltraVNC Improper Initialization

01 March 2019

UltraVNC revision 1211 contains multiple memory leaks (CWE-655) in VNC server code, which allow an attacker to read stack memory and can be abused for information disclosure. Combined with another vulnerability, it can be used to leak stack memory and bypass ASLR. This attack appear to be exploitable via network connectivity. These vulnerabilities have been fixed in revision 1212. Successful exploitation of this vulnerability could allow an attacker to execute arbitrary code.