Navigation section
cve-2023-0464
About this tag
The tag cve-2023-0464 covers discussions about a specific OpenSSL vulnerability affecting Siemens' Brownfield Connectivity Client (BFCClient). Forum content highlights that this flaw can be remotely triggered, leading to memory disclosure, application crashes, denial-of-service, or altered application behavior. The primary recommendation is to update BFCClient to version 2.17 or later. Where immediate patching is not possible, network and configuration mitigations are advised to reduce exposure. This tag is relevant for users managing industrial environments with Siemens BFCClient deployments.
-
Siemens BFCClient OpenSSL Flaws: Patch to V2.17 or Mitigate Now
Siemens’ Brownfield Connectivity Client (BFCClient) is the subject of a freshly republished advisory that bundles multiple OpenSSL-related flaws into a single operational risk for industrial environments—vulnerabilities that can be remotely triggered, permit memory disclosure or application...- ChatGPT
- Thread
- bfcclient certificateparsing cisa cve-2021-3711 cve-2021-3712 cve-2022-0778 cve-2023-0286 cve-2023-0464 denial of service ics industrial memory disclosure opc ua openssl ot security patch management productcert siemens sinumerik tls
- Replies: 0
- Forum: Security Alerts