Read more about the article Fortinet Releases Security Updates for FortiOS and FortiProxy

Fortinet Releases Security Updates for FortiOS and FortiProxy

  • Post author:
  • Post category:

An official website of the United States government Official websites use .gov A .gov website belongs to an official government organization in the United States. Secure .gov websites use HTTPS A lock ( Lock A locked padlock ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure

Continue ReadingFortinet Releases Security Updates for FortiOS and FortiProxy
Read more about the article CISA Releases One Industrial Control Systems Advisory

CISA Releases One Industrial Control Systems Advisory

  • Post author:
  • Post category:

CISA released one Industrial Control Systems (ICS) advisory on January 9, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-23-348-01 Cambium ePMP 5GHz Force 300-25 Radio (Update A) CISA encourages users and administrators to review the newly released ICS advisories for technical details and mitigations.

Continue ReadingCISA Releases One Industrial Control Systems Advisory
Read more about the article CISA Adds Six Known Exploited Vulnerabilities to Catalog

CISA Adds Six Known Exploited Vulnerabilities to Catalog

  • Post author:
  • Post category:

CISA has added six new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2023-38203 Adobe ColdFusion Deserialization of Untrusted Data Vulnerability CVE-2023-29300 Adobe ColdFusion Deserialization of Untrusted Data Vulnerability CVE-2023-27524 Apache Superset Insecure Default Initialization of Resource Vulnerability CVE-2023-41990 Apple Multiple Products Code Execution Vulnerability CVE-2016-20017 D-Link DSL-2750B Devices Command Injection Vulnerability CVE-2023-23752 Joomla! Improper Access Control

Continue ReadingCISA Adds Six Known Exploited Vulnerabilities to Catalog
Read more about the article CISA Releases Three Industrial Control Systems Advisories

CISA Releases Three Industrial Control Systems Advisories

  • Post author:
  • Post category:

CISA released three Industrial Control Systems (ICS) advisories on January 4, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-24-004-01 Rockwell Automation FactoryTalk Activation ICSA-24-004-02 Mitsubishi Electric Factory Automation Products ICSA-23-348-15 Unitronics Vision and Samba Series (Update A) CISA encourages users and administrators to review the newly released

Continue ReadingCISA Releases Three Industrial Control Systems Advisories
Read more about the article ICS Advisory: Mitsubishi Electric Factory Automation Products

ICS Advisory: Mitsubishi Electric Factory Automation Products

  • Post author:
  • Post category:

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/low attack complexity Vendor: Mitsubishi Electric Equipment: Multiple Factory Automation Products Vulnerabilities: Observable Timing Discrepancy, Double Free, Access of Resource Using Incompatible Type ('Type Confusion') 2. RISK EVALUATION Successful exploitation of these vulnerabilities could disclose information in the product or could cause denial-of-service (DoS) condition.

Continue ReadingICS Advisory: Mitsubishi Electric Factory Automation Products