Fortinet Releases Security Updates for FortiOS
Fortinet has released security updates to address a heap-based buffer overflow vulnerability (CVE-2022-42475) in FortiOS. An attacker could exploit this vulnerability to take control of an affected system. FortiOS – heap-based buffer overflow in sslvpnd Summary A heap-based buffer overflow vulnerability [CWE-122] in FortiOS SSL-VPN may…
CVE-2022-41120 PoC released for Windows Sysmon Elevation of Privilege Vulnerability
A security researcher has published details and proof-of-concept (PoC) code for a Microsoft Windows Sysmon vulnerability that could be exploited to gain elevated privileges on the system. Tracked as CVE-2022-41120 (CVSS score of 7.8), the security defect was identified and reported in June, with a…
VMware Releases Security Updates
VMware has released security updates to address multiple vulnerabilities in VMware Cloud Foundation. A remote attacker could exploit one of these vulnerabilities to take control of an affected system. Multiple vulnerabilities were privately reported to VMware. Updates are available to address this vulnerability in affected…
Siemens Siveillance Video Mobile Server
1. EXECUTIVE SUMMARY CVSS v3 9.4 ATTENTION: Exploitable remotely/low attack complexity Vendor: Siemens Equipment: Siveillance Video 2022 R2 Vulnerability: Weak Authentication 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an unauthenticated remote attacker to access the application without a valid account. 3. TECHNICAL DETAILS 3.1 AFFECTED PRODUCTS…
Siemens EN100 Ethernet Module
1. EXECUTIVE SUMMARY CVSS v3 8.6 ATTENTION: Exploitable remotely/low attack complexity Vendor: Siemens Equipment: EN100 Ethernet Module Vulnerability: Improper Restriction of Operations within the Bounds of a Memory Buffer. 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to crash the affected application leading to a…
Allot Telco Security Trends Report Reveals CSP Security Services Prove Highly Effective in Protecting Consumers from Mobile and IoT Threats –
Findings show almost two billion security threats blocked during four-month period across seven million subscribers HOD HASHARON, Israel- Allot Communications Ltd. (NASDAQ: ALLT) (TASE: ALLT), a global provider of leading innovative network intelligence and security solutions for service providers worldwide, released findings from its Telco Security Trends…
7 Variants of Mirai (So Far)
Mirai is an example of the newest trend in rapidly evolving, constantly improving IoT malware. These seven variants show how threat actors are making bad malware worse. Satori Where Mirai is relatively broad in scope, able to plant itself on many different routers and devices,…
Ericsson doubles its 2023 forecast for IoT connections
Ericsson has almost doubled its forecast for connected cellular Internet of Things (IoT) in 2023 to 3.5 billion, the mobile telecom gear maker said on Tuesday. That was up from a November forecast of 1.8 billion connected cellular devices. “The forecast for cellular IoT connections…
Stay connected