Siemens and Schneider Electric released advisories addressing over 40 vulnerabilities in their products, including the Ruggedcom APE1808 industrial application hosting platform. These vulnerabilities exist in the Nozomi Networks Guardian product and Central Management Console. Siemens is working on patches, but in the meantime, workarounds and mitigations are available. The vulnerabilities can lead to information disclosure, arbitrary code execution, user session hijacking, and denial-of-service attacks. The advisories also address critical vulnerabilities in Scalance W1750D, Simcenter Amesim, and Sicam A8000 remote terminal units. Schneider Electric released advisories for vulnerabilities in SpaceLogic C-Bus Toolkit and EcoStruxure products. #ICS #cybersecurity #vulnerabilities

https://www.securityweek.com/ics-patch-tuesday-siemens-ruggedcom-devices-affected-by-nozomi-component-flaws/