Art Page
View CSAF 1. EXECUTIVE SUMMARY CVSS v3 8.6 ATTENTION: Exploitable remotely/low attack complexity Vendor: Rockwell Automation Equipment: ControlLogix, GuardLogix Vulnerability: Improper Restriction of Operations within the Bounds of a Memory Buffer 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to crash the device by exploiting a Denial-of-Service (DoS) vulnerability. 3. TECHNICAL DETAILS
MILTON, WV – The U.S. Department of Labor obtained a consent judgment and order in federal court requiring the trustees of coal producer Blackjewel LLC’s 401(k) plan to pay $637,014 in equitable restitution after an investigation found they violated fiduciary duties under the Employee Retirement Income Security Act of 1974. The court’s action followed an investigation
View CSAF 1. EXECUTIVE SUMMARY CVSS v3 8.1 ATTENTION: Exploitable remotely/low attack complexity/public exploits are available/known public exploitation Vendor: Hitron Systems Equipment: DVR Vulnerability: Improper Input Validation 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to affect the availability of the product through exploitation of an improper input validation vulnerability and
MILTON, WV – The U.S. Department of Labor’s Employee Benefits Security Administration has entered into a settlement agreement to resolve more than $1.2 million in unpaid medical claims by the Revelation Energy LLC health care plan based in Milton. The settlement agreement follows an EBSA investigation that found the affiliated employers offered a self-insured health plan
View CSAF 1. EXECUTIVE SUMMARY CVSS v3 5.9 ATTENTION: Exploitable remotely Vendor: Mitsubishi Electric Equipment: MELSEC WS Series Vulnerability: Authentication Bypass by Capture-replay 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an unauthorized attacker to login to the modules and disclose or tamper with the programs and parameters in the modules. 3. TECHNICAL
