Chengbin Wang

**Name of the Vulnerable Software and Affected Versions** Windows Client Side Caching driver (csc.sys) (affected versions not specified) **Description** A heap-based buffer overflow in the Windows Client Side Caching driver (csc.sys) allows an authorized attacker to elevate privileges locally. A heap-based buffer overflow occurs when a program writes more data to a heap-allocated memory block than it can hold, potentially leading to arbitrary code execution or system instability. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Windows Hyper-V (affected versions not specified) Description: An integer overflow or wraparound in Windows Hyper-V can allow a locally authorized attacker to elevate privileges. This issue allows attackers to affect the system. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows Hyper-V (affected versions not specified) **Description** A heap-based buffer overflow issue in Windows Hyper-V allows an authorized attacker to elevate privileges locally. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows Hyper-V (affected versions not specified) **Description** A heap-based buffer overflow issue in Windows Hyper-V allows an authorized attacker to elevate privileges locally. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: SIMATIC S7-PLCSIM versions V16 through V17 SIMATIC STEP 7 Safety versions V16 through V19 SIMATIC STEP 7 versions V16 through V19 SIMATIC WinCC Unified versions V16 through V19 SIMATIC WinCC versions V16 through V19 SIMOCODE ES versions V16 through V19 SIMOTION SCOUT TIA versions V5.4 SP1 through V5.6 SP1 SINAMICS Startdrive versions V16 through V19 SIRIUS Safety ES versions V17 through V19 SIRIUS Soft Starter ES versions V17 through V19 TIA Portal Cloud versions V16 through V19 Description: The affected products do not properly sanitize user-controllable input when parsing log files, which could allow an attacker to cause a type confusion and execute arbitrary code within the affected application. This issue is related to deficiencies in the deserialization mechanism. Exploitation of this issue may allow an attacker to execute arbitrary code. Recommendations: For SIMATIC S7-PLCSIM versions V16 through V17, update to a patched version. For SIMATIC STEP 7 Safety versions V16 through V19, update to a patched version. For SIMATIC STEP 7 versions V16 through V19, update to a patched version. For SIMATIC WinCC Unified versions V16 through V19, update to a patched version. For SIMATIC WinCC versions V16 through V19, update to a patched version. For SIMOCODE ES versions V16 through V19, update to a patched version. For SIMOTION SCOUT TIA versions V5.4 SP1 through V5.6 SP1, update to a patched version. For SINAMICS Startdrive versions V16 through V19, update to a patched version. For SIRIUS Safety ES versions V17 through V19, update to a patched version. For SIRIUS Soft Starter ES versions V17 through V19, update to a patched version. For TIA Portal Cloud versions V16 through V19, update to a patched version. As a temporary workaround, consider restricting access to log file parsing functionality until a patch is available.

Name of the Vulnerable Software and Affected Versions: Windows Hyper-V (affected versions not specified) Description: The issue is related to the storage of confidential data in incorrectly locked memory, which can be exploited to cause a denial of service. This allows attackers to affect the system. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows Hyper-V (affected versions not specified) **Description** The issue is related to insufficient access controls in the Windows Hyper-V hardware virtualization system, allowing an attacker to potentially elevate their privileges by sending specially crafted requests. This can affect the system. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Microsoft .NET Framework (affected versions not specified) **Description** The issue is related to insufficient access restrictions in the Microsoft .NET Framework, allowing a remote attacker to elevate their privileges. To exploit this, an attacker must first access the local machine and then run a malicious program. The vulnerability is addressed by correcting how .NET Framework activates COM objects. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** SIMATIC PCS 7 versions V8.0 and earlier SIMATIC PCS 7 V8.1 versions prior to V8.1 with WinCC V7.3 Upd 19 SIMATIC PCS 7 V8.2 versions prior to V8.2 SP1 with WinCC V7.4 SP1 Upd11 SIMATIC PCS 7 V9.0 versions prior to V9.0 SP2 with WinCC V7.4 SP1 Upd11 SIMATIC WinCC (TIA Portal) version V13 SIMATIC WinCC (TIA Portal) V14 versions prior to V14 SP1 Upd 9 SIMATIC WinCC (TIA Portal) V15 versions prior to V15.1 Upd 3 SIMATIC WinCC Runtime Professional version V13 SIMATIC WinCC Runtime Professional V14 versions prior to V14.1 Upd 8 SIMATIC WinCC Runtime Professional V15 versions prior to V15.1 Upd 3 SIMATIC WinCC versions V7.2 and earlier SIMATIC WinCC V7.3 versions prior to V7.3 Upd 19 SIMATIC WinCC V7.4 versions prior to V7.4 SP1 Upd 11 SIMATIC WinCC V7.5 versions prior to V7.5 Upd 3 **Description** The issue is related to insufficient input validation, allowing an attacker with access to the project file to execute arbitrary system commands with the privileges of the local database server. This could impact the confidentiality, integrity, and availability of the affected system. At the time of advisory publication, no public exploitation of this security issue was known. **Recommendations** For SIMATIC PCS 7 versions V8.0 and earlier, update to a version later than V8.0. For SIMATIC PCS 7 V8.1 versions prior to V8.1 with WinCC V7.3 Upd 19, update to V8.1 with WinCC V7.3 Upd 19 or later. For SIMATIC PCS 7 V8.2 versions prior to V8.2 SP1 with WinCC V7.4 SP1 Upd11, update to V8.2 SP1 with WinCC V7.4 SP1 Upd11 or later. For SIMATIC PCS 7 V9.0 versions prior to V9.0 SP2 with WinCC V7.4 SP1 Upd11, update to V9.0 SP2 with WinCC V7.4 SP1 Upd11 or later. For SIMATIC WinCC (TIA Portal) version V13, update to a version later than V13. For SIMATIC WinCC (TIA Portal) V14 versions prior to V14 SP1 Upd 9, update to V14 SP1 Upd 9 or later. For SIMATIC WinCC (TIA Portal) V15 versions prior to V15.1 Upd 3, update to V15.1 Upd 3 or later. For SIMATIC WinCC Runtime Professional version V13, update to a version later than V13. For SIMATIC WinCC Runtime Professional V14 versions prior to V14.1 Upd 8, update to V14.1 Upd 8 or later. For SIMATIC WinCC Runtime Professional V15 versions prior to V15.1 Upd 3, update to V15.1 Upd 3 or later. For SIMATIC WinCC versions V7.2 and earlier, update to a version later than V7.2. For SIMATIC WinCC V7.3 versions prior to V7.3 Upd 19, update to V7.3 Upd 19 or later. For SIMATIC WinCC V7.4 versions prior to V7.4 SP1 Upd 11, update to V7.4 SP1 Upd 11 or later. For SIMATIC WinCC V7.5 versions prior to V7.5 Upd 3, update to V7.5 Upd 3 or later.