By michele654 on Tuesday, 11 February 2025
Category: Vulnerabilities

New Vulnerabilities Tuesday 11 February


Monthly Patches are out for Siemens, Schneider Electric, and SAP. New Alerts for Apple (0-Day), Dell, and Linux. Monthly Patches for Microsoft and Adobe are expected this afternoon.

Siemens 

Monthly Patches include 23 bulletins, 14 new and 9 updated. Of the new bulletins, highest CVSSv4 score of 9.4
More info.

SIMATIC S7-1200 CPU family is affected by two denial of service vulnerabilities. Highest CVSSv4 score of 8.7
More info.

Tableau Server component in Opcenter Intelligence contains multiple vulnerabilities. Highest CVSSv4 score of 9.4
More info.

Affected products do not invalidate user sessions upon user logout. This could allow a remote attacker to re-use a legitimate user's session even after logout. CVSSv4 score of 8.7
More info.

SCALANCE W-700 IEEE 802.11ax devices are affected by multiple vulnerabilities. Highest CVSSv4 score of 8.6
More info.

Schneider Electric 

Monthly Patches include 6 bulletins, 4 new and 2 updated. Of the new, highest CVSSv4 of 8.7
More info.

Multiple vulnerabilities exist in its ASCO 5310 Remote Annunciator and ASCO 5350 Remote Annunciator products. Highest CVSSv4 score of 8.7
More info.

SAP 

Monthly Patches include 21 Security Notes, 19 new and 2 updated. Highest CVSSv3 score of 8.7
More info.

Apple 0-Day

Apple has published security updates for iOS and iPadOS. Exploits have been seen.
More info.

Dell 

Dell has published Critical bulletins for Avamar, Networker Virtual Edition and PowerProtect DP Series Appliance.
More info.

Linux 

Red Hat has updated the kernel. More info.

Security Wizardry Cyber Threat Intelligence - The Radar Page

Security Wizardry Cyber Threat Intelligence - The Mobile Radar Page

SecurityWizardry.com - Vulnerability Details