IM
IronMonkey Threat Research
‹ Back to ICS Advisories

SSA-470355: Zlib and Foxit Vulnerabilities in CADRA

CRITICAL
CVSS 9.8
Date 2026-07-14T00:00:00+00:00
Source siemens-productcert
Published by Siemens ProductCERT

// Description

CADRA is affected by multiple zlib and Foxit vulnerabilities. Siemens has released a new version for CADRA and recommends to update to the latest version. Siemens is preparing further fix versions and recommends specific countermeasures for products where fixes are not, or not yet available.

// Vulnerabilities (11)

CVE ID CVSS Score Severity Description
CVE-2025-10585 8.8 high
CVE-2025-10585. Type confusion in V8 in Google Chrome prior to 140.0.7339.185 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2017-14919 7.5 high
CVE-2017-14919. Node.js before 4.8.5, 6.x before 6.11.5, and 8.x before 8.8.0 allows remote attackers to cause a denial of service (uncaught exception and crash) by leveraging a change in the zlib module 1.2.9 making 8 an invalid value for the windowBits parameter.
CVE-2022-37434 9.8 critical
CVE-2022-37434. zlib through 1.2.12 has a heap-based buffer over-read or buffer overflow in inflate in inflate.c via a large gzip header extra field. NOTE: only applications that call inflateGetHeader are affected. Some common applications bundle the affected zlib source code but may be unable to call inflateGetHeader (e.g., see the nodejs/node reference).
CVE-2026-22184 0.0 unknown
CVE-2026-22184. zlib versions up to and including 1.3.1.2 include a global buffer overflow in the untgz utility located under contrib/untgz. The vulnerability is limited to the standalone demonstration utility and does not affect the core zlib compression library. The flaw occurs when a user executes the untgz command with an excessively long archive name supplied via the command line, leading to an out-of-bounds write in a fixed-size global buffer.
CVE-2016-9842 8.8 high
CVE-2016-9842. The inflateMark function in inflate.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact via vectors involving left shifts of negative integers.
CVE-2023-45853 9.8 critical
CVE-2023-45853. MiniZip in zlib through 1.3 has an integer overflow and resultant heap-based buffer overflow in zipOpenNewFileInZip4_64 via a long filename, comment, or extra field. NOTE: MiniZip is not a supported part of the zlib product. NOTE: pyminizip through 0.2.6 is also vulnerable because it bundles an affected zlib version, and exposes the applicable MiniZip code through its compress API.
CVE-2016-9840 8.8 high
CVE-2016-9840. inftrees.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact by leveraging improper pointer arithmetic.
CVE-2018-25032 7.5 high
CVE-2018-25032. zlib before 1.2.12 allows memory corruption when deflating (i.e., when compressing) if the input has many distant matches.
CVE-2005-2096 7.3 high
CVE-2005-2096. zlib 1.2 and later versions allows remote attackers to cause a denial of service (crash) via a crafted compressed stream with an incomplete code description of a length greater than 1, which leads to a buffer overflow, as demonstrated using a crafted PNG file.
CVE-2016-9841 9.8 critical
CVE-2016-9841. inffast.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact by leveraging improper pointer arithmetic.
CVE-2025-13223 8.8 high
CVE-2025-13223. Type Confusion in V8 in Google Chrome prior to 142.0.7444.175 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

// Affected Products (51)

Vendor Product Asset Type Purdue Level Firmware
Siemens Unknown plc
L1
--
Siemens Unknown plc
L1
--
Siemens Unknown plc
L1
--
Siemens Unknown plc
L1
--
Siemens Unknown network_device -- --
Siemens Unknown network_device -- --
Siemens Unknown network_device -- --
Siemens Unknown network_device -- --
Siemens Unknown network_device -- --
Siemens Unknown network_device -- --
Siemens Unknown network_device -- --
Siemens Unknown network_device -- --
Siemens Unknown network_device -- --
Siemens Unknown network_device -- --
Siemens Unknown network_device -- --
Siemens Unknown network_device -- --
Siemens Unknown network_device -- --
Siemens Unknown network_device -- --
Siemens Unknown network_device -- --
Siemens Unknown network_device -- --
Siemens Unknown network_device -- --
Siemens Unknown network_device -- --
Siemens Unknown network_device -- --
Siemens Unknown network_device -- --
Siemens Unknown network_device -- --
Siemens Unknown network_device -- --
Siemens Unknown network_device -- --
Siemens Unknown network_device -- --
Siemens Unknown network_device -- --
Siemens Unknown network_device -- --
Siemens Unknown network_device -- --
Siemens Unknown network_device -- --
Siemens Unknown network_device -- --
Siemens Unknown network_device -- --
Siemens Unknown network_device -- --
Siemens Unknown network_device -- --
Siemens Unknown network_device -- --
Siemens Unknown network_device -- --
Siemens Unknown network_device -- --
Siemens Unknown network_device -- --
Siemens Unknown network_device -- --
Siemens Unknown network_device -- --
Siemens Unknown network_device -- --
Siemens Unknown network_device -- --
Siemens Unknown network_device -- --
Siemens Unknown network_device -- --
Siemens Unknown network_device -- --
Siemens Unknown network_device -- --
Siemens Unknown network_device -- --
Siemens Unknown network_device -- --
Siemens Unknown network_device -- --

// Remediations (27)

Mitigation: Block access to untrusted or external web content from sensitive systems
Block access to untrusted or external web content from sensitive systems
Mitigation: Mitigating factors describe conditions and circumstances that make an attack that exploits the vuln
Mitigating factors describe conditions and circumstances that make an attack that exploits the vulnerability difficult or less likely to succeed. The following mitigations are recommended. 5. Filter specific ICMP packets from external systems (ICMP type 13 and 14) by firewall for not exposing the system time. Refer to section General security recommendations for additional advice on how to keep your system secure.
Mitigation: Do not allow process control systems to have direct connections to the Internet.
Do not allow process control systems to have direct connections to the Internet.
Mitigation: For all listed vulnerabilities: Lumada APM Version 6.5.0.1 or later.
For all listed vulnerabilities: Lumada APM Version 6.5.0.1 or later.
Mitigation: For more information, see Hitachi Energy advisory 8DBD000134.
For more information, see Hitachi Energy advisory 8DBD000134.
Mitigation: Separate process control systems from other networks via a firewall system with a minimal number of
Separate process control systems from other networks via a firewall system with a minimal number of exposed ports.
Mitigation: Have security updates applied to installed software components.
Have security updates applied to installed software components.
Mitigation: Note: Hitachi Energy has already remediated these vulnerabilities for cloud-based deployments (softw
Note: Hitachi Energy has already remediated these vulnerabilities for cloud-based deployments (software-as-a-service) of Lumada APM.
Mitigation: For CVE-2022-37434 only: Lumada APM Version 6.4.0.1 or later.
For CVE-2022-37434 only: Lumada APM Version 6.4.0.1 or later.
Mitigation: Carefully scan portable computers and removable storage media for viruses before connection to a con
Carefully scan portable computers and removable storage media for viruses before connection to a control system.
Mitigation: Users should contact Hitachi Energy for instructions on acquiring and installing the new versions.
Users should contact Hitachi Energy for instructions on acquiring and installing the new versions.
Mitigation: Protect process control systems from physical access by unauthorized personnel.
Protect process control systems from physical access by unauthorized personnel.
Mitigation: Hitachi Energy encourages users to apply recommended security practices and firewall configurations.
Hitachi Energy encourages users to apply recommended security practices and firewall configurations.
Mitigation: Do not use process control systems for personal use such as web browsing or checking emails.
Do not use process control systems for personal use such as web browsing or checking emails.
Patch: Update to V3.3.4 or later version
Update to V3.3.4 or later version
Patch: Update to V2.0 or later version
Update to V2.0 or later version
Mitigation: Only build and run applications from trusted sources.
Only build and run applications from trusted sources.
Patch: Update to V3.1.5 or later version
Update to V3.1.5 or later version
Mitigation: Mitigating factors describe conditions and circumstances that make an attack that exploits the vuln
Mitigating factors describe conditions and circumstances that make an attack that exploits the vulnerability difficult or less likely to succeed. The following mitigations are recommended. 5. Filter specific ICMP packets from external systems (ICMP type 13 and 14) by firewall for not exposing the system time. Refer to section General security recommendations for additional advice on how to keep your system secure.
Patch: Update to V3.0.0 or later version
Update to V3.0.0 or later version
Patch: Update to V3.0 or later version
Update to V3.0 or later version
Patch: Update the firmware of the integrated SCALANCE S615 device to V7.2 or later version
Update the firmware of the integrated SCALANCE S615 device to V7.2 or later version
Mitigation: Restrict physical access to the affected drives, also to their Ethernet Port included on the front o
Restrict physical access to the affected drives, also to their Ethernet Port included on the front of the control door
Mitigation: Disconnect any direct network connection to the integrated SCALANCE S615 device
Disconnect any direct network connection to the integrated SCALANCE S615 device
Patch: Update to V2.0 or later version
Update to V2.0 or later version
Patch: Update to V7.2 or later version
Update to V7.2 or later version
Patch: Update to V3.0 or later version
Update to V3.0 or later version

// References