Read more about the article Cisco Releases Security Advisories for Multiple Products

Cisco Releases Security Advisories for Multiple Products

  • Post author:
  • Post category:

An official website of the United States government Official websites use .gov A .gov website belongs to an official government organization in the United States. Secure .gov websites use HTTPS A lock (LockA locked padlock) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites. America's Cyber

Continue ReadingCisco Releases Security Advisories for Multiple Products
Read more about the article CISA Adds Three Known Exploited Vulnerabilities to Catalog

CISA Adds Three Known Exploited Vulnerabilities to Catalog

  • Post author:
  • Post category:

CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation: CVE-2023-40044 Progress WS_FTP Server Deserialization of Untrusted Data Vulnerability  CVE-2023-42824 Apple iOS and iPadOS Kernel Privilege Escalation Vulnerability CVE-2023-22515 Atlassian Confluence Data Center and Server Privilege Escalation Vulnerability These types of vulnerabilities are frequent attack vectors for malicious cyber actors and

Continue ReadingCISA Adds Three Known Exploited Vulnerabilities to Catalog
Read more about the article CISA Releases Three Industrial Control Systems Advisories

CISA Releases Three Industrial Control Systems Advisories

  • Post author:
  • Post category:

CISA released three Industrial Control Systems (ICS) advisories on October 5, 2023. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-23-278-01 Hitachi Energy AFS65x, AFF66x, AFS67x, and AFR67x Series Products ICSA-23-278-02 Qognify NiceVision ICSA-23-278-03 Mitsubishi Electric CC-Link IE TSN Industrial Managed Switch CISA encourages users and administrators to review

Continue ReadingCISA Releases Three Industrial Control Systems Advisories
Read more about the article ICS Advisory: Mitsubishi Electric CC-Link IE TSN Industrial Managed Switch

ICS Advisory: Mitsubishi Electric CC-Link IE TSN Industrial Managed Switch

  • Post author:
  • Post category:

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 6.5 ATTENTION: Exploitable remotely/low attack complexity Vendor: Mitsubishi Electric Equipment: CC-Link IE TSN Industrial Managed Switch Vulnerabilities: Observable Timing Discrepancy, Double Free 2. RISK EVALUATION Successful exploitation of these vulnerabilities could result in disclosure of information stored in the product by sending specially crafted packets or could cause

Continue ReadingICS Advisory: Mitsubishi Electric CC-Link IE TSN Industrial Managed Switch
Read more about the article ICS Advisory: Qognify NiceVision

ICS Advisory: Qognify NiceVision

  • Post author:
  • Post category:

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 10.0 ATTENTION: Exploitable remotely/low attack complexity Vendor: Qognify Equipment: NiceVision Vulnerability: Use of Hard-coded Credentials 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to retrieve sensitive information about the cameras managed by the platform and its users. 3. TECHNICAL DETAILS 3.1 AFFECTED PRODUCTS The

Continue ReadingICS Advisory: Qognify NiceVision