Cyber Security Archives - Page 5 of 7

Critical vulnerabiliities, Cyber Security, ICS, News

Siemens SCALANCE X200 IRT

1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/low attack complexity Vendor: Siemens Equipment: SCALANCE X200 IRT Products Vulnerability: Improper Input Validation 2. RISK EVALUATION Successful exploitation of this vulnerability could allow remote attackers to cause a denial-of-service condition. 3. TECHNICAL DETAILS 3.1 AFFECTED PRODUCTS The following Siemens products…

IoT, 2 years ago 3 min read

Critical vulnerabiliities, Cyber Security, Industrial IoT (IIoT), Market, News, Reports, Security Patches...

Fortinet Releases Security Updates for FortiOS

Fortinet has released security updates to address a heap-based buffer overflow vulnerability (CVE-2022-42475) in FortiOS. An attacker could exploit this vulnerability to take control of an affected system. FortiOS – heap-based buffer overflow in sslvpnd Summary A heap-based buffer overflow vulnerability [CWE-122] in FortiOS SSL-VPN may…

IoT, 2 years ago 2 min read

Critical vulnerabiliities, Cyber Security, Market, News, Recommendations

Cisco Releases Security Advisory for IP Phone 7800 and 8800 Series

Summary A vulnerability in the Cisco Discovery Protocol processing feature of Cisco IP Phone 7800 and 8800 Series firmware could allow an unauthenticated, adjacent attacker to cause a stack overflow on an affected device.This vulnerability is due to insufficient input validation of received Cisco Discovery…

IoT, 2 years ago 4 min read

Critical vulnerabiliities, Cyber Security, Hacks, News

CISA Releases Phishing Infographic

CISA published a Phishing Infographic to help protect both organizations and individuals from successful phishing operations. This infographic provides a visual summary of how threat actors execute successful phishing operations. Details include metrics that compare the likelihood of certain types of “bait” and how commonly…

IoT, 2 years ago 2 min read

Cyber Security, News, Recommendations, Remediation

AVEVA Edge

1. EXECUTIVE SUMMARY CVSS v3 4.7 ATTENTION: Exploitable remotely/low attack complexity/public exploits are available Vendor: Digital Alert Systems Equipment: DASDEC Vulnerability: Cross-site Scripting 2. RISK EVALUATION Successful exploitation of these vulnerabilities might result in false alerts being issued to broadcast or cable sites that are immediately connected to the…

IoT, 2 years ago 2 min read

Cyber Security, Market, News, Recommendations, Remediation, Security Patches, Vulnerabilities...

Apple Releases Security Update for Xcode

Apple has released a security update to address vulnerabilities in Xcode. A remote attacker could exploit one of these vulnerabilities to take control of an affected system. About Apple security updates For our customers’ protection, Apple doesn’t disclose, discuss, or confirm security issues until an…

IoT, 2 years ago 1 min read

Cyber Security, Market, News, Uncategorized, Vulnerabilities

CISA Releases RedEye: Red Team Campaign Visualization and Reporting Tool

CISA has released RedEye, an interactive open-source analytic tool to visualize and report Red Team command and control activities. RedEye allows an operator to quickly assess complex data, evaluate mitigation strategies, and enable effective decision making. RedEye is an open-source analytic tool developed by CISA…

IoT, 2 years ago 3 min read

Critical vulnerabiliities, Cyber Security, News, Recommendations, Security Patches, Vulnerabilities

Cisco Releases Security Updates for Multiple Products

Cisco has released security updates for vulnerabilities affecting multiple products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. For updates addressing high and low severity vulnerabilities, see the Cisco Security Advisories page. Reporting or Obtaining Support for a Suspected Security…

IoT, 2 years ago 19 min read

Critical vulnerabiliities, Cyber Security, ICS, IoT Security, News, Recommendations, Vulnerabilities...

Hitachi Energy MicroSCADA Pro/X SYS600

1. EXECUTIVE SUMMARY CVSS v3 8.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Hitachi Energy Equipment: MicroSCADA Pro/X SYS600 Vulnerabilities: Observable Discrepancy, HTTP Request Smuggling, Classic Buffer Overflow, Improper Certificate Validation, Improper Restriction of Operations within the Bounds of a Memory Buffer, Exposure of Sensitive Information to an Unauthorized Actor…

(I)IoT, 3 years ago 6 min read

Critical vulnerabiliities, Cyber Security, Industrial IoT (IIoT), IoT Security, Recommendations, Uncategorized, Vulnerabilities...

Mitsubishi Electric MELSEC-Q Series C Controller Module

1. EXECUTIVE SUMMARY CVSS v3 9.0 ATTENTION: Exploitable remotely Vendor: Mitsubishi Electric Equipment: MELSEC-Q Series C Controller Module Vulnerability: Heap-based Buffer Overflow 2. RISK EVALUATION Successful exploitation of this vulnerability could cause a denial-of-service condition or allow remote code execution. 3. TECHNICAL DETAILS 3.1 AFFECTED PRODUCTS The following versions…

IoT, 3 years ago 2 min read

Stay connected

Trending News

Bosch Rexroth IndraDrive

Delta Electronics DIAScreen

LiteSpeed Cache Plugin Vulnerability Poses Significant Risk to WordPress Websites

Delta Electronics InfraSuite Device Master

iniNet Solutions SpiderControl SCADA PC HMI Editor

VIMESA VHF/FM Transmitter Blue Plus

Siemens SCALANCE X200 IRT

Fortinet Releases Security Updates for FortiOS

Cisco Releases Security Advisory for IP Phone 7800 and 8800 Series

CISA Releases Phishing Infographic

AVEVA Edge

Apple Releases Security Update for Xcode

CISA Releases RedEye: Red Team Campaign Visualization and Reporting Tool

Cisco Releases Security Updates for Multiple Products

Hitachi Energy MicroSCADA Pro/X SYS600

Mitsubishi Electric MELSEC-Q Series C Controller Module

Hot Topics

Bosch Rexroth IndraDrive

Delta Electronics DIAScreen

LiteSpeed Cache Plugin Vulnerability Poses Significant Risk to WordPress Websites

Delta Electronics InfraSuite Device Master

iniNet Solutions SpiderControl SCADA PC HMI Editor

VIMESA VHF/FM Transmitter Blue Plus

Categories

Bosch Rexroth IndraDrive

Delta Electronics DIAScreen

LiteSpeed Cache Plugin Vulnerability Poses Significant Risk to WordPress Websites

Delta Electronics InfraSuite Device Master

iniNet Solutions SpiderControl SCADA PC HMI Editor

VIMESA VHF/FM Transmitter Blue Plus

Latest

Popular

Bosch Rexroth IndraDrive

Delta Electronics DIAScreen

LiteSpeed Cache Plugin Vulnerability Poses Significant Risk to WordPress Websites

Delta Electronics InfraSuite Device Master

Advantech WebAccess Node

Fazecast jSerialComm

Apache Tomcat RCE by deserialization (CVE-2020-9484) – write-up and exploit0

JexBoss – JBoss Verify and EXploitation Tool