Vulnerabilities Archives - (I)IoT Security News

Bosch Rexroth IndraDrive

1. EXECUTIVE SUMMARY 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to cause a denial-of-service, rendering the device unresponsive by sending arbitrary UDP messages. 3. TECHNICAL DETAILS 3.1 AFFECTED PRODUCTS Bosch Rexroth reports that the following versions of IndraDrive, servo drive…

(I) IoT, 2 weeks ago 3 min read

ICS, News, Vulnerabilities

Delta Electronics DIAScreen

1. EXECUTIVE SUMMARY 2. RISK EVALUATION Successful exploitation of this these vulnerabilities could crash the device being accessed; a buffer overflow condition may allow remote code execution. 3. TECHNICAL DETAILS 3.1 AFFECTED PRODUCTS The following versions of DIAScreen, which is a component of Delta’s DIAStudio…

(I) IoT, 2 weeks ago 3 min read

https://www.cisa.gov/news-events/ics-advisories/icsa-24-303-03

ICS, News, Vulnerabilities

Delta Electronics InfraSuite Device Master

1. EXECUTIVE SUMMARY 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an unauthenticated attacker to remotely execute arbitrary code. 3. TECHNICAL DETAILS 3.1 AFFECTED PRODUCTS The following versions of InfraSuite Device Master, a real-time device monitoring software, are affected: 3.2 Vulnerability Overview 3.2.1 DESERIALIZATION…

(I) IoT, 3 weeks ago 3 min read

News, Vulnerabilities

VIMESA VHF/FM Transmitter Blue Plus

1. EXECUTIVE SUMMARY 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to perform a Denial-of-Service. 3. TECHNICAL DETAILS 3.1 AFFECTED PRODUCTS The following version of VIMESA VHF/FM Transmitter Blue Plus, a VHF/FM Transmitter, is affected: 3.2 Vulnerability Overview 3.2.1 Improper Access Control…

(I) IoT, 3 weeks ago 3 min read

Critical vulnerabiliities, Cyber Security, IoT Security, News, Vulnerabilities

Cisco Adaptive Security Appliance Software SSH Remote Command Injection Vulnerability

Summary A vulnerability in the SSH subsystem of Cisco Adaptive Security Appliance (ASA) Software could allow an authenticated, remote attacker to execute operating system commands as root. This vulnerability is due to insufficient validation of user input. An attacker could exploit this vulnerability by submitting crafted…

(I) IoT, 4 weeks ago 6 min read

Critical vulnerabiliities, Cyber Security, IoT Security, News, Vulnerabilities

Cisco Firepower Threat Defense Software for Firepower 1000, 2100, 3100, and 4200 Series Static Credential Vulnerability

Summary A vulnerability in Cisco Firepower Threat Defense (FTD) Software for Cisco Firepower 1000, 2100, 3100, and 4200 Series could allow an unauthenticated, local attacker to access an affected system using static credentials. This vulnerability is due to the presence of static accounts with hard-coded…

(I) IoT, 4 weeks ago 6 min read

News, Vulnerabilities

Mitsubishi Electric MELSEC iQ-F FX5-OPC

1. EXECUTIVE SUMMARY 2. RISK EVALUATION Successful exploitation of this vulnerability could allow a remote attacker to cause a Denial-of-Service (DoS) condition on the product by getting a legitimate user to import a specially crafted PKCS#12 format certificate. 3. TECHNICAL DETAILS 3.1 AFFECTED PRODUCTS The…

(I) IoT, 2 months ago 2 min read

Critical vulnerabiliities, IoT Security, Vulnerabilities

Cisco IOS and IOS XE Software Resource Reservation Protocol Denial of Service Vulnerability

Summary A vulnerability in the Resource Reservation Protocol (RSVP) feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload unexpectedly, resulting in a denial of service (DoS) condition. This vulnerability is due…

(I) IoT, 2 months ago 4 min read

Critical vulnerabiliities, Cyber Security, IoT Security, News, Vulnerabilities

Cisco Catalyst SD-WAN Routers Denial of Service Vulnerability

Summary A vulnerability in the process that classifies traffic that is going to the Unified Threat Defense (UTD) component of Cisco IOS XE Software in controller mode could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device….

(I) IoT, 2 months ago 6 min read

Cyber Security, DER, Vulnerabilities

Schneider Electric Security Notification-Vijeo Designer

10 September 2024OverviewSchneider Electric is aware of a vulnerability in its Vijeo Designer product. The Vijeo Designer product is HMI Configuration Software compatible with Harmony and Magelis HMI. Vijeo Designer software offers functions such as multimedia capabilities and remote access for more efficiency.Failure to apply…

(I) IoT, 2 months ago 3 min read

Stay connected

Trending News

Bosch Rexroth IndraDrive

Delta Electronics DIAScreen

LiteSpeed Cache Plugin Vulnerability Poses Significant Risk to WordPress Websites

Delta Electronics InfraSuite Device Master

iniNet Solutions SpiderControl SCADA PC HMI Editor

VIMESA VHF/FM Transmitter Blue Plus

Bosch Rexroth IndraDrive

Delta Electronics DIAScreen

Delta Electronics InfraSuite Device Master

VIMESA VHF/FM Transmitter Blue Plus

Cisco Adaptive Security Appliance Software SSH Remote Command Injection Vulnerability

Cisco Firepower Threat Defense Software for Firepower 1000, 2100, 3100, and 4200 Series Static Credential Vulnerability

Mitsubishi Electric MELSEC iQ-F FX5-OPC

Cisco IOS and IOS XE Software Resource Reservation Protocol Denial of Service Vulnerability

Cisco Catalyst SD-WAN Routers Denial of Service Vulnerability

Schneider Electric Security Notification-Vijeo Designer

Hot Topics

Bosch Rexroth IndraDrive

Delta Electronics DIAScreen

LiteSpeed Cache Plugin Vulnerability Poses Significant Risk to WordPress Websites

Delta Electronics InfraSuite Device Master

iniNet Solutions SpiderControl SCADA PC HMI Editor

VIMESA VHF/FM Transmitter Blue Plus

Categories

Bosch Rexroth IndraDrive

Delta Electronics DIAScreen

LiteSpeed Cache Plugin Vulnerability Poses Significant Risk to WordPress Websites

Delta Electronics InfraSuite Device Master

iniNet Solutions SpiderControl SCADA PC HMI Editor

VIMESA VHF/FM Transmitter Blue Plus

Latest

Popular

Bosch Rexroth IndraDrive

Delta Electronics DIAScreen

LiteSpeed Cache Plugin Vulnerability Poses Significant Risk to WordPress Websites

Delta Electronics InfraSuite Device Master

Advantech WebAccess Node

Fazecast jSerialComm

Apache Tomcat RCE by deserialization (CVE-2020-9484) – write-up and exploit0

JexBoss – JBoss Verify and EXploitation Tool